29 matches found
PT-2023-29871 · Kernelsu · Kernelsu
Name of the Vulnerable Software and Affected Versions: KernelSU versions 0.6.1 through 0.6.x Description: The issue arises from a flaw in the signature verification logic of KernelSU, allowing malware with specially constructed app signing blocks to gain root privileges on infected devices. This...
KernelSU Security Vulnerability
kernelsu is a kernel-based solution for obtaining root privileges on Android devices. A security vulnerability exists in KernelSU versions prior to 0.6.1 to 0.7.0, which stems from a vulnerability that allows an attacker to take over root privileges on a device by building the application signing...
CVE-2023-5521
Incorrect Authorization in GitHub repository tiann/kernelsu prior to v0.6.9...
CVE-2023-5521 Incorrect Authorization in tiann/kernelsu
Incorrect Authorization in GitHub repository tiann/kernelsu prior to v0.6.9...
CVE-2023-5521
CVE-2023-5521 concerns the tiann/kernelsu project. Multiple connected sources confirm an incorrect authorization flaw in KernelSU prior to v0.6.9 that enables a root takeover via manipulation of the signing blocks in APKs. The root cause is described as improper authorization checks during app si...
CVE-2023-5521 Incorrect Authorization in tiann/kernelsu
Incorrect Authorization in GitHub repository tiann/kernelsu prior to v0.6.9...
PT-2023-32151 · Tiann · Kernelsu
Name of the Vulnerable Software and Affected Versions: tiann/kernelsu versions prior to 0.6.9 Description: The issue concerns incorrect authorization in the tiann/kernelsu GitHub repository. This allows for root takeover via signature spoofing. Recommendations: For versions prior to 0.6.9, update...
kernelsu Security Vulnerabilities
kernelsu is a kernel-based solution for obtaining root privileges on Android devices. A security vulnerability exists in kernelsu versions prior to v0.6.9, which stems from incorrect application authorization...
Root takeover via signature spoofing
Description When an app requests "CMDBECOMEMANAGER" via prctl, couple of checks done before promoting uid as root manager. Main check relies on requester's signature. Signature control is done in checkv2signature function in kernel\apksign.c, this function accepts both V2 and V3 signatures...