Elevation of Privilege Vulnerability in Android Kernel by Google
CVE-2017-0564

7.8HIGH

Key Information:

Vendor

Linux
Status
Android Kernel-3.10 Kernel-3.18
Vendor
CVE Published:
7 April 2017

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2017-0564?

An elevation of privilege vulnerability exists in the kernel ION subsystem of the Android operating system, allowing a local adversary to execute arbitrary code at the kernel level. This flaw can lead to extensive control over the device, potentially resulting in permanent compromise of device integrity. Local applications with malicious intent could exploit this weakness, necessitating a full reinstallation of the operating system to restore device functionality. This vulnerability primarily affects specific kernel versions, making it crucial for users to ensure their devices are updated to protected versions.

Affected Version(s)

Android Kernel-3.10 Kernel-3.18 Android Kernel-3.10 Kernel-3.18

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2017-0564-ION-PoC
Created by guoygang

References

https://source.android.com/security/bulletin/2017-04-01
x_refsource_CONFIRM
http://www.securityfocus.com/bid/97344
vdb-entryx_refsource_BID
https://source.android.com/security/bulletin/2017-12-01
x_refsource_CONFIRM

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.