CVE-2019-2215
CVE-2019-2215
En resumen
Un defecto en el sistema binder de Android permite que una aplicación acceda a memoria ya liberada, pudiendo otorgar control total del kernel. Un atacante necesitaría instalar una app maliciosa o explotar otra vulnerabilidad para desencadenar esto.
Detalle técnico
Vulnerabilidad use-after-free en binder.c permite escalada de privilegios desde contexto de aplicación a nivel de kernel mediante corrupción de memoria. La explotación requiere ejecución de código local (instalación de app maliciosa o vulnerabilidad en app de cara a red), pero sin interacción del usuario; el impacto incluye compromiso completo del kernel.
Resumen generado y traducido por IA a partir de la descripción oficial.
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Productos afectados
n/a · AndroidPoCs públicas encontradas — 32
githubgithub.com/kangtastic/cve-2019-2215★ 134githubgithub.com/timwr/CVE-2019-2215★ 77githubgithub.com/sharif-dev/AndroidKernelVulnerability★ 70githubgithub.com/0xbinder/android-kernel-exploitation-lab★ 44githubgithub.com/DimitriFourny/cve-2019-2215★ 40githubgithub.com/LIznzn/CVE-2019-2215★ 26githubgithub.com/stevejubx/CVE-2019-2215★ 16githubgithub.com/c3r34lk1ll3r/CVE-2019-2215★ 14githubgithub.com/R0rt1z2/huawei-unlock★ 11githubgithub.com/qre0ct/android-kernel-exploitation-ashfaq-CVE-2019-2215★ 7githubgithub.com/willboka/CVE-2019-2215-HuaweiP20Lite★ 5githubgithub.com/mutur4/CVE-2019-2215★ 5githubgithub.com/llccd/TempRoot-Huawei★ 4githubgithub.com/i-redbyte/android-badbinder-demo★ 4githubgithub.com/Byte-Master-101/CVE-2019-2215★ 3githubgithub.com/ATorNinja/CVE-2019-2215★ 3githubgithub.com/Enceka/cve-2019-2215-3.18★ 3githubgithub.com/mufidmb38/CVE-2019-2215★ 3githubgithub.com/wired0ut/CVE-2019-2215★ 2githubgithub.com/CrackerCat/Rootsmart-v2.0★ 2githubgithub.com/elbiazo/CVE-2019-2215★ 2githubgithub.com/mouseos/cve-2019-2215_SH-M08★ 2githubgithub.com/nicchongwb/Rootsmart-v2.0★ 1githubgithub.com/mythicaltree/CVE-2019-2215★ 0githubgithub.com/XiaozaYa/CVE-2019-2215★ 0githubgithub.com/raymontag/CVE-2019-2215★ 0githubgithub.com/codecat007/CVE-2019-2215★ 0cve_referencepacketstormsecurity.com/files/156495/Android-Binder-Use-After-Free.htmlno verificadoexploitdbwww.exploit-db.com/exploits/47463no verificadoexploitdbwww.exploit-db.com/exploits/48129no verificadocve_referencepacketstormsecurity.com/files/154911/Android-Binder-Use-After-Free.htmlno verificadocve_referencepacketstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.htmlno verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://packetstormsecurity.com/files/154911/Android-Binder-Use-After-Free.htmlhttp://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.htmlhttp://packetstormsecurity.com/files/156495/Android-Binder-Use-After-Free.htmlhttp://seclists.org/fulldisclosure/2019/Oct/38https://lists.debian.org/debian-lts-announce/2020/01/msg00013.htmlhttps://lists.debian.org/debian-lts-announce/2020/03/msg00001.htmlhttps://seclists.org/bugtraq/2019/Nov/11https://security.netapp.com/advisory/ntap-20191031-0005/https://source.android.com/security/bulletin/2019-10-01https://usn.ubuntu.com/4186-1/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-2215http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-binder-en