canyie

3 exploits Active since Mar 2024
CVE-2024-48336 NOMISEC HIGH WORKING POC
Magisk App < canary 27007 - Privilege Escalation
The install() function of ProviderInstaller.java in Magisk App before canary version 27007 does not verify the GMS app before loading it, which allows a local untrusted app with no additional privileges to silently execute arbitrary code in the Magisk app and escalate privileges to root via a crafted package, aka Bug #8279. User interaction is not needed for exploitation.
205 stars
CVSS 8.4
CVE-2024-0044 NOMISEC MEDIUM WORKING POC
PackageInstallerService - Privilege Escalation
In createSessionInternal of PackageInstallerService.java, there is a possible run-as any app due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
170 stars
CVSS 6.7
CVE-2026-0091 NOMISEC HIGH WORKING POC
Google Android - Improper Privilege Management
In multiple locations, there is a possible way to execute code in the launcher process due to an over-privileged shell user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
1 stars
CVSS 7.8