{
  "title": "Android Framework CVE-2025-48595: KEV Local Privilege Escalation",
  "summary": "Google says Android Framework CVE-2025-48595 may be under limited, targeted exploitation. The high-severity integer-overflow issue affects Android 14, 15, 16, and 16 QPR2 and is addressed at the 2026-06-01 security patch level.",
  "date": "2026-06-02",
  "severity": "high",
  "tags": [
    "android",
    "framework",
    "cisa-kev",
    "privilege-escalation",
    "zero-day"
  ],
  "sources_count": 4,
  "indicators": {
    "slug": "android-framework-cve-2025-48595-kev",
    "since": "2026-06-02T00:00:00Z",
    "until": "2026-06-02T23:59:59Z",
    "ecosystem": "",
    "cves": [
      "CVE-2025-48595"
    ],
    "cwes": [
      "CWE-190"
    ],
    "advisoryIds": [],
    "products": [],
    "packages": [],
    "versions": [],
    "affectedVersions": [],
    "fixedVersions": [],
    "files": [],
    "paths": [],
    "services": [],
    "domains": [
      "source.android.com",
      "www.cisa.gov",
      "nvd.nist.gov",
      "android.googlesource.com"
    ],
    "urls": [
      "https://source.android.com/docs/security/bulletin/2026/2026-06-01",
      "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48595",
      "https://nvd.nist.gov/vuln/detail/CVE-2025-48595",
      "https://android.googlesource.com/platform/external/sqlite/+/aaebce3d8fd545d05f16cc9a137f22da8cad52c8"
    ],
    "ips": [],
    "hashes": [
      "aaebce3d8fd545d05f16cc9a137f22da8cad52c8"
    ],
    "processPatterns": [],
    "networkPatterns": [],
    "telemetrySelectors": []
  }
}