CVE-2019-2215: Android 资源管理错误漏洞

获取后续新漏洞提醒登录后订阅

一、漏洞 CVE-2019-2215 基础信息

漏洞信息

对漏洞内容有疑问？看看神龙的深度分析是否有帮助！

查看神龙十问 ↗

尽管我们使用了先进的大模型技术，但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性，但请您根据实际情况进行核实和判断。

Vulnerability Title

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Description

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095

来源: 美国国家漏洞数据库 NVD

CVSS Information

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Type

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Title

Android 资源管理错误漏洞

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Description

Android是美国谷歌（Google）和开放手持设备联盟（简称OHA）的一套以Linux为基础的开源操作系统。 Android中的binder.c文件存在资源管理错误漏洞。攻击者可利用该漏洞提升权限。

来源: 中国国家信息安全漏洞库 CNNVD

CVSS Information

N/A

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Type

N/A

来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商	产品	影响版本	CPE	订阅
-	Android	Kernel	-

二、漏洞 CVE-2019-2215 的公开POC

#	POC 描述	源链接	神龙链接
1	None	https://github.com/timwr/CVE-2019-2215	POC详情
2	None	https://github.com/raystyle/CVE-2019-2215	POC详情
3	Temproot for Pixel 2 and Pixel 2 XL via CVE-2019-2215	https://github.com/kangtastic/cve-2019-2215	POC详情
4	CVE 2019-2215 Android Binder Use After Free	https://github.com/marcinguy/CVE-2019-2215	POC详情
5	Temproot for Bravia TV via CVE-2019-2215.	https://github.com/LIznzn/CVE-2019-2215	POC详情
6	Android privilege escalation via an use-after-free in binder.c	https://github.com/DimitriFourny/cve-2019-2215	POC详情
7	android-kernel-exploitation-ashfaq-CVE-2019-2215 docker setup for mac users	https://github.com/qre0ct/android-kernel-exploitation-ashfaq-CVE-2019-2215	POC详情
8	Triggering and Analyzing Android Kernel Vulnerability CVE-2019-2215	https://github.com/sharif-dev/AndroidKernelVulnerability	POC详情
9	PoC for old Binder vulnerability (based on P0 exploit)	https://github.com/c3r34lk1ll3r/CVE-2019-2215	POC详情
10	Temproot for Pixel 2 and Pixel 2 XL via CVE-2019-2215	https://github.com/Byte-Master-101/CVE-2019-2215	POC详情
11	CVE-2019-2215	https://github.com/mufidmb38/CVE-2019-2215	POC详情
12	Android Ransomware Development - AES256 encryption + CVE-2019-2215 (reverse root shell) + Data Exfiltration	https://github.com/nicchongwb/Rootsmart-v2.0	POC详情
13	for kernel 3.18.x	https://github.com/enceka/cve-2019-2215-3.18	POC详情
14	Exploit for Bad Binder	https://github.com/elbiazo/CVE-2019-2215	POC详情
15	Android Kernel Vulnerability (CVE-2019-2215) temporary root PoC	https://github.com/jsirichai/CVE-2019-2215	POC详情
16	Exploit for CVE-2019-2215 (bad binder) for Huawei P20 Lite	https://github.com/willboka/CVE-2019-2215-HuaweiP20Lite	POC详情
17	This is a bad-binder exploit affecting the android binder IPC system that was used in the wild discovered by P0	https://github.com/mutur4/CVE-2019-2215	POC详情
18	Android Ransomware Development - AES256 encryption + CVE-2019-2215 (reverse root shell) + Data Exfiltration	https://github.com/CrackerCat/Rootsmart-v2.0	POC详情
19	CVE 2019-2215 Android Binder Use After Free	https://github.com/ATorNinja/CVE-2019-2215	POC详情
20	None	https://github.com/raymontag/CVE-2019-2215	POC详情
21	Unlock your Huawei device with ADB (CVE-2019-2215)	https://github.com/R0rt1z2/huawei-unlock	POC详情
22	Android Kernel Vulnerability (CVE-2019-2215) temporary root PoC	https://github.com/stevejubx/CVE-2019-2215	POC详情
23	Andriod binder bug record	https://github.com/XiaozaYa/CVE-2019-2215	POC详情
24	CVE-2019-2215 poc for Huawei hardened kernel	https://github.com/llccd/TempRoot-Huawei	POC详情
25	None	https://github.com/0xbinder/android-kernel-exploitation-cve-2019-2215	POC详情
26	This lab guides you through setting up an environment to explore CVE-2019-2215, a critical Android kernel vulnerability in the binder subsystem.	https://github.com/0xbinder/android-kernel-exploitation-lab	POC详情
27	None	https://github.com/mouseos/cve-2019-2215_SH-M08	POC详情
28	for kernel 3.18.x	https://github.com/Enceka/cve-2019-2215-3.18	POC详情
29	demo CVE-2019-2215 (Bad Binder) for Android Q	https://github.com/i-redbyte/android-badbinder-demo	POC详情

AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2019-2215 的情报信息

Please 登录 to view more intelligence information

https://security.netapp.com/advisory/ntap-20191031-0005/x_refsource_CONFIRM
http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.htmlx_refsource_MISC
http://packetstormsecurity.com/files/156495/Android-Binder-Use-After-Free.htmlx_refsource_MISC
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-binder-enx_refsource_CONFIRM
https://source.android.com/security/bulletin/2019-10-01x_refsource_CONFIRM
https://usn.ubuntu.com/4186-1/vendor-advisoryx_refsource_UBUNTU
http://seclists.org/fulldisclosure/2019/Oct/38mailing-listx_refsource_FULLDISC
https://seclists.org/bugtraq/2019/Nov/11mailing-listx_refsource_BUGTRAQ
https://lists.debian.org/debian-lts-announce/2020/01/msg00013.htmlmailing-listx_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2020/03/msg00001.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2019-2215

IV. Related Vulnerabilities

Same product: Android

Same vendor: n/a

V. Comments for CVE-2019-2215

暂无评论

目标达成感谢每一位支持者 — 我们达成了 100% 目标！

一、漏洞 CVE-2019-2215 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

受影响产品

二、漏洞 CVE-2019-2215 的公开POC

三、漏洞 CVE-2019-2215 的情报信息

IV. Related Vulnerabilities

V. Comments for CVE-2019-2215

发表评论

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

一、 漏洞 CVE-2019-2215 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

受影响产品

二、漏洞 CVE-2019-2215 的公开POC

三、漏洞 CVE-2019-2215 的情报信息

IV. Related Vulnerabilities

V. Comments for CVE-2019-2215

发表评论

目标达成感谢每一位支持者 — 我们达成了 100% 目标！

一、漏洞 CVE-2019-2215 基础信息