Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2017-13216Out-of-bounds Write in INC Android

CWE-787Out-of-bounds Write10 documents9 sources
Severity
7.8HIGHNVD
EPSS
3.8%
top 11.81%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Linux KernelGoogle INC Android
Timeline
PublishedJan 12
Latest updateMay 14

Description

In ashmem_ioctl of ashmem.c, there is an out-of-bounds write due to insufficient locking when accessing asma. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-66954097.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5google_inc/androidAndroid kernel
Debianlinux/linux_kernel< 4.14.17-1+3

🔴Vulnerability Details

3
GHSA
GHSA-c895-rp2x-rjpv: In ashmem_ioctl of ashmem2022-05-14
CVEList
CVE-2017-13216: In ashmem_ioctl of ashmem2018-01-12
OSV
CVE-2017-13216: In ashmem_ioctl of ashmem2018-01-12

💥Exploits & PoCs

1
Exploit-DB
Android - Inter-Process munmap due to Race Condition in ashmem2018-01-08

📋Vendor Advisories

3
Red Hat
kernel: escalation of privileges (EoP) in ashmem_ioctl function in drivers/staging/android/ashmen.c2018-01-02
Android
CVE-2017-13216: Ashmem2018-01-01
Debian
CVE-2017-13216: linux - In ashmem_ioctl of ashmem.c, there is an out-of-bounds write due to insufficient...2017

💬Community

2
Bugzilla
CVE-2017-13216 kernel: escalation of privileges (EoP) in ashmem_ioctl function in drivers/staging/android/ashmen.c2018-01-16
Bugzilla
CVE-2017-13216 kernel: escalation of privileges (EoP) in ashmem_ioctl function in drivers/staging/android/ashmen.c [fedora-all]2018-01-16
CVE-2017-13216 — Out-of-bounds Write in INC Android | cvebase