CVE-2011-1823

🗓️ 09 Jun 2011 10:00:00Reported by mitreType

The vold volume manager daemon on Android 3.0 and 2.x before 2.3.4 trusts messages that are received from a PF_NETLINK socket, which allows local users to execute arbitrary code and gain root privileges via a negative index that bypasses a maximum-only signed integer check in the DirectVolume::handlePartitionAdded method

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2011-1823	9 Jun 201100:00	–	attackerkb
android	Gingerbreak	21 Apr 201100:00	–	android
Circl	CVE-2011-1823	14 Jun 202321:10	–	circl
CISA KEV Catalog	Android OS Privilege Escalation Vulnerability	8 Sep 202200:00	–	cisa_kev
Check Point Advisories	Google Android Vold Volume Manager Integer Wrap Root Exploit Privilege Escalation - Ver2 (CVE-2011-1823)	16 Apr 201400:00	–	checkpoint_advisories
Cvelist	CVE-2011-1823	9 Jun 201110:00	–	cvelist
NVD	CVE-2011-1823	9 Jun 201110:36	–	nvd
Prion	Design/Logic Flaw	9 Jun 201110:36	–	prion
VulnCheck KEV	VulnCheck KEV: CVE-2011-1823	17 Aug 202100:00	–	vulncheck_kev
Vulnrichment	CVE-2011-1823	9 Jun 201110:00	–	vulnrichment

NVD

Node

google androidRange2.0–2.3.4

google androidMatch3.0

Source	Link
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/67977
androidpolice	www.androidpolice.com/2011/05/03/google-patches-gingerbreak-exploit-but-dont-worry-we-still-have-root-for-now/
android	www.android.git.kernel.org/
androidcommunity	www.androidcommunity.com/gingerbreak-root-for-gingerbread-app-20110421/
xorl	www.xorl.wordpress.com/2011/04/28/android-vold-mpartminors-signedness-issue/
android	www.android.git.kernel.org/
forum	www.forum.xda-developers.com/showthread.php
android	www.android.git.kernel.org/
c-skills	www.c-skills.blogspot.com/2011/04/yummy-yummy-gingerbreak.html
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog

21 Apr 2026 20:29Current

7.5High risk

Vulners AI Score7.5

CVSS 27.2

CVSS 3.17.8

EPSS0.38341

SSVC