CVE-2017-0823

HIGH

Android 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2 - Information Disclosure in rild

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-0823. PoCs published by codecat007.

AI-analyzed exploit summary The repository contains a functional exploit PoC for CVE-2017-0823, demonstrating a heap-buffer-overflow vulnerability in the Android RIL (Radio Interface Layer) daemon via a crafted Unix socket message. The PoC triggers a crash in the 'rild' process by sending a malformed payload to the '/dev/socket/rild-debug' socket.

Description

An information disclosure vulnerability in the Android system (rild). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37896655.

Exploits (1)

github WORKING POC 8 stars

by codecat007 · cpoc

https://github.com/codecat007/cvehub/tree/main/android/CVE-2017-0823

View Code ZIP pw:eip

The repository contains a functional exploit PoC for CVE-2017-0823, demonstrating a heap-buffer-overflow vulnerability in the Android RIL (Radio Interface Layer) daemon via a crafted Unix socket message. The PoC triggers a crash in the 'rild' process by sending a malformed payload to the '/dev/socket/rild-debug' socket.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Android RIL Daemon (rild)

No auth needed

Prerequisites: Access to the target Android device · Ability to execute code on the device

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (2)

Core 2

Core References

Patch, Vendor Advisory x_refsource_confirm

https://source.android.com/security/bulletin/pixel/2017-10-01

Issue Tracking, Patch, Vendor Advisory x_refsource_confirm

https://android.googlesource.com/platform/hardware/ril/+/cd5f15f588a5d27e99ba12f057245bfe507f8c42

Scores

CVSS v3 7.5

EPSS 0.0028

EPSS Percentile 52.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-200

Status published

Products (37)

google/android 4.0

google/android 4.0.1

google/android 4.0.2

google/android 4.0.3

google/android 4.0.4

google/android 4.1

google/android 4.1.2

google/android 4.2

google/android 4.2.1

google/android 4.2.2

... and 27 more

Published Oct 04, 2017

Tracked Since Feb 18, 2026