CVE-2017-0554

HIGH

Android 4.4.4 5.0.2 5.1.1 6.0 6.0.1 7.0 7.1.1 - Elevation of Privilege in Telephony Component

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-0554. PoCs published by lanrat.

AI-analyzed exploit summary This repository contains a functional proof-of-concept Android application that exploits CVE-2017-0554 to bypass tethering provisioning checks on Android versions prior to 7.1.2. The exploit manipulates telephony and connectivity services via reflection to disable and re-enable mobile data, effectively bypassing carrier restrictions.

Description

An elevation of privilege vulnerability in the Telephony component could enable a local malicious application to access capabilities outside of its permission levels. This issue is rated as Moderate because it could be used to gain access to elevated capabilities, which are not normally accessible to a third-party application. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-33815946.

Exploits (1)

nomisec WORKING POC 16 stars

by lanrat · poc

https://github.com/lanrat/tethr

View Code ZIP pw:eip

This repository contains a functional proof-of-concept Android application that exploits CVE-2017-0554 to bypass tethering provisioning checks on Android versions prior to 7.1.2. The exploit manipulates telephony and connectivity services via reflection to disable and re-enable mobile data, effectively bypassing carrier restrictions.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Android (versions prior to 7.1.2)

No auth needed

Prerequisites: Android device with version prior to 7.1.2 · Access to install the APK

MITRE ATT&CK

T1562.001 - Disable or Modify Tools T1587.001 - Malware

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3

Core References

Vendor Advisory x_refsource_confirm

https://source.android.com/security/bulletin/2017-04-01

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/97343

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1038201

Scores

CVSS v3 7.8

EPSS 0.0076

EPSS Percentile 73.6%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-862

Status published

Products (35)

google/android 4.0

google/android 4.0.1

google/android 4.0.2

google/android 4.0.3

google/android 4.0.4

google/android 4.1

google/android 4.1.2

google/android 4.2

google/android 4.2.1

google/android 4.2.2

... and 25 more

Published Apr 07, 2017

Tracked Since Feb 18, 2026