CVE-2015-6606

Android < 5.1 - Privilege Escalation via Secure Element Evaluation Kit Plugin

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-6606. PoCs published by michaelroland.

AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2015-6606, a code injection vulnerability in the SEEK smartcard service (versions 3.1.0 and below). The exploit demonstrates arbitrary code execution in the context of the smartcard system service, leveraging elevated permissions.

Description

The Secure Element Evaluation Kit (aka SEEK or SmartCard API) plugin in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 22301786.

Exploits (1)

nomisec WORKING POC 3 stars
by michaelroland · poc
https://github.com/michaelroland/omapi-cve-2015-6606-exploit

This repository contains a proof-of-concept exploit for CVE-2015-6606, a code injection vulnerability in the SEEK smartcard service (versions 3.1.0 and below). The exploit demonstrates arbitrary code execution in the context of the smartcard system service, leveraging elevated permissions.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: SEEK smartcard service <= 3.1.0
No auth needed
Prerequisites: Android device with vulnerable SEEK smartcard service · Ability to install arbitrary APKs
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

EPSS 0.0077
EPSS Percentile 51.3%

Details

CWE
CWE-264
Status published
Products (1)
google/android < 5.1
Published Oct 06, 2015
Tracked Since Feb 18, 2026