CVE-2015-0572

HIGH

Linux Kernel 3.0-3.19.8 - Race Condition in ADSPRPC Driver via COMPAT_FASTRPC_IOCTL_INVOKE_FD

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-0572. PoCs published by ScottyBauer.

AI-analyzed exploit summary This PoC exploits a race condition in the Android kernel's fastrpc driver (CVE-2015-0572) by manipulating stack memory during ioctl operations, leading to arbitrary kernel memory corruption. The exploit uses pthreads to race against the ioctl call, overwriting kernel structures with controlled values.

Description

Multiple race conditions in drivers/char/adsprpc.c and drivers/char/adsprpc_compat.c in the ADSPRPC driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to cause a denial of service (zero-value write) or possibly have unspecified other impact via a COMPAT_FASTRPC_IOCTL_INVOKE_FD ioctl call.

Exploits (1)

github WORKING POC 682 stars
by ScottyBauer · cpoc
https://github.com/ScottyBauer/Android_Kernel_CVE_POCs/tree/master/CVE-2015-0572.c

This PoC exploits a race condition in the Android kernel's fastrpc driver (CVE-2015-0572) by manipulating stack memory during ioctl operations, leading to arbitrary kernel memory corruption. The exploit uses pthreads to race against the ioctl call, overwriting kernel structures with controlled values.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Complex
Reliability
Racy
Target: Android kernel (fastrpc driver)
No auth needed
Prerequisites: Access to /dev/adsprpc-smd device node
devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (5)

Core 5

Scores

CVSS v3 7.0
EPSS 0.0029
EPSS Percentile 20.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-362
Status published
Products (1)
linux/linux_kernel 3.0 - 3.19.8
Published Oct 10, 2016
Tracked Since Feb 18, 2026