CVE-2017-0521

HIGH

Linux Kernel - Integer Overflow in Qualcomm Camera Driver

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2017-0521. PoCs published by ScottyBauer, derrekr.

AI-analyzed exploit summary The repository contains a functional PoC exploit for CVE-2017-0521, targeting a vulnerability in the Android kernel's MSM camera driver. The code includes structures and IOCTL definitions to interact with the vulnerable driver, likely exploiting improper input validation to achieve privilege escalation.

Description

An elevation of privilege vulnerability in the Qualcomm camera driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-32919951. References: QC-CR#1097709.

Exploits (2)

github WORKING POC 682 stars

by ScottyBauer · cpoc

https://github.com/ScottyBauer/Android_Kernel_CVE_POCs/tree/master/CVE-2017-0521.c

View Code ZIP pw:eip

The repository contains a functional PoC exploit for CVE-2017-0521, targeting a vulnerability in the Android kernel's MSM camera driver. The code includes structures and IOCTL definitions to interact with the vulnerable driver, likely exploiting improper input validation to achieve privilege escalation.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Android Kernel (MSM Camera Driver)

No auth needed

Prerequisites: Access to the target device's camera driver · Kernel with vulnerable MSM camera driver

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548 - Abuse Elevation Control Mechanism

devstral-2 · analyzed Feb 27, 2026 Full analysis →

github WORKING POC 87 stars

by derrekr · cpoc

https://github.com/derrekr/android_security/tree/master/CVE-2017-0521

View Code ZIP pw:eip

The repository contains functional exploit code for CVE-2017-0521, targeting a buffer overflow vulnerability in the MSM camera driver on Android devices. The PoC includes detailed structures and IOCTL operations to trigger the vulnerability.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Qualcomm MSM camera driver (Android)

No auth needed

Prerequisites: Access to the target device's camera driver · Kernel module loaded

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548 - Abuse Elevation Control Mechanism

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (5)

Core 5

Core References

Vendor Advisory x_refsource_confirm

https://source.android.com/security/bulletin/2017-03-01

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1037968

Patch x_refsource_confirm

https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=dbe4f26f200db10deaf38676b96d8738afcc10c8

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/96951

Patch, Vendor Advisory

https://source.android.com/security/bulletin/2017-03-01.html

Scores

CVSS v3 7.0

EPSS 0.0179

EPSS Percentile 75.5%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-190

Status published

Products (4)

Google Inc./Android Kernel-3.10

Google Inc./Android Kernel-3.18

linux/linux_kernel 3.10

linux/linux_kernel 3.18

Published Mar 08, 2017

Tracked Since Feb 18, 2026