CVE-2019-2215

7.8HIGH

Key Information

Vendor: Google
Status: Android
Vendor: CVE Published:; 11 October 2019

Badges

👾 Exploit Exists🔴 Public PoC

Summary

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095

CISA Reported

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2019-2215 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply updates per vendor instructions.

Affected Version(s)

Android = Kernel

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

cve-2019-2215
Created by kangtastic

CVE-2019-2215
Created by timwr

AndroidKernelVulnerability
Created by sharif-dev

EPSS Score

48% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit exists.
Aug 5, 2024
Vulnerability published.
Oct 11, 2019
Vulnerability Reserved.
Dec 10, 2018

Collectors

NVD DatabaseMitre DatabaseCISA Database14 Proof of Concept(s)