CVE-2017-0569

HIGH

Android Kernel <3.18 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-0569. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the Broadcom Wi-Fi driver (CVE-2017-0569) by sending a crafted WLC_E_PFN_SWC event with mismatched total_count and pkt_count values, leading to a heap overflow in the kernel. The PoC includes a scapy-based attack to trigger the vulnerability on a Nexus 5 device.

Description

An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-34198729. References: B-RB#110666.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textremotehardware

https://www.exploit-db.com/exploits/41808

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in the Broadcom Wi-Fi driver (CVE-2017-0569) by sending a crafted WLC_E_PFN_SWC event with mismatched total_count and pkt_count values, leading to a heap overflow in the kernel. The PoC includes a scapy-based attack to trigger the vulnerability on a Nexus 5 device.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Broadcom Wi-Fi driver (bcmdhd) on Android devices (e.g., Nexus 5, Nexus 6P)

No auth needed

Prerequisites: Physical proximity to the target device · Target device must be using a vulnerable Broadcom Wi-Fi driver · Target device must connect to a malicious network

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →