CVE-2023-49794

Published: Jan 2, 2024Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

KernelSU is a Kernel-based root solution for Android devices. In versions 0.7.1 and prior, the logic of get apk path in KernelSU kernel module can be bypassed, which causes any malicious apk named `me.weishu.kernelsu` get root permission. If a KernelSU module installed device try to install any not checked apk which package name equal to the official KernelSU Manager, it can take over root privileges on the device. As of time of publication, a patched version is not available.

Affected (1)

Products: Kernelsu: Kernelsu

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Kernelsu Kernelsu	Up to 0.7.1

Related CWEs

Authentication Bypass by Spoofing

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

References (4)

https://drive.google.com/file/d/1b9UrmG_co9EJXB_yMBneRArUIR5sTuaN/view?usp=drive_link

Source: security-advisories@github.com

Product

https://github.com/tiann/KernelSU/security/advisories/GHSA-8rc5-x54x-5qc4

Source: security-advisories@github.com

ExploitVendor Advisory

https://drive.google.com/file/d/1b9UrmG_co9EJXB_yMBneRArUIR5sTuaN/view?usp=drive_link

Source: af854a3a-2127-422b-91ae-364da2661108

Product

https://github.com/tiann/KernelSU/security/advisories/GHSA-8rc5-x54x-5qc4

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

Timeline

No history available yet.