Main Vulnerability Database Exploits ID:9452 - Exploit for Use-after-free in Google Android - CVE-2019-2215

ID:9452 - Exploit for Use-after-free in Google Android - CVE-2019-2215

Published: December 21, 2023

Vulnerability identifier: #VU35165

Vulnerability risk: Low

CVE-ID: CVE-2019-2215

CWE-ID: CWE-416

Exploitation vector: Local access

Vulnerable software:
Google Android

Link to public exploit:

https://github.com/elbiazo/CVE-2019-2215

Vulnerability description

The vulnerability allows a local authenticated user to execute arbitrary code.

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095

Remediation

Install update from vendor's website.

ID:9452 - Exploit for Use-after-free in Google Android - CVE-2019-2215

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human