Shuaibing Lu

7 exploits Active since Oct 2018
CVE-2018-11020 WRITEUP MEDIUM WORKING POC
Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 - Code Injection
kernel/omap/drivers/rpmsg/rpmsg_omx.c in the kernel component in Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device file /dev/rpmsg-omx1 with the command 3221772291, and cause a kernel crash.
CVSS 4.4
CVE-2018-11021 WRITEUP HIGH WORKING POC
Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 - Code Injection
kernel/omap/drivers/video/omap2/dsscomp/device.c in the kernel component in Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device /dev/dsscomp with the command 1118064517 and cause a kernel crash.
CVSS 7.5
CVE-2018-11019 WRITEUP HIGH WORKING POC
Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 - Code Injection
kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device /dev/gcioctl with the command 3221773726 and cause a kernel crash.
CVSS 7.5
CVE-2018-11023 WRITEUP HIGH WORKING POC
Amazon Kindle Fire HD (3rd) Fire OS 4.5.5.3 - Code Injection
kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD (3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device /dev/gcioctl with the command 3222560159 and cause a kernel crash.
CVSS 7.5
CVE-2018-11024 WRITEUP HIGH WRITEUP
Amazon Kindle Fire HD (3rd) Fire OS 4.5.5.3 - Code Injection
kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD (3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device /dev/gcioctl with the command 1077435789 and cause a kernel crash.
CVSS 7.5
CVE-2018-18318 WRITEUP HIGH WORKING POC
Qiku 360 Phone N6 Pro 1801-A01 - Denial of Service via mmcblk0rpmb Driver ioctl Call
The /dev/block/mmcblk0rpmb driver kernel module on Qiku 360 Phone N6 Pro 1801-A01 devices allows attackers to cause a denial of service (NULL pointer dereference and device crash) via a crafted 0xc0d8b300 ioctl call.
CVSS 7.5
CVE-2020-28841 WRITEUP MEDIUM WORKING POC
DriverGenius 9.61.3708.3054 - Buffer Overflow
MyDrivers64.sys in DriverGenius 9.61.3708.3054 allows attackers to cause a system crash via the ioctl command 0x9c402000 to \\.\MyDrivers0_0_1.
CVSS 5.5