CVE-2023-40109

HIGH

Android - Local Privilege Escalation via UsbConfiguration Parcel Handling

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-40109. PoCs published by uthrasri.

AI-analyzed exploit summary This repository contains functional exploit code for CVE-2023-40109, targeting USB accessory and device filtering mechanisms in Android. The code includes classes for USB accessory and device filtering, which can be manipulated to bypass intended restrictions.

Description

In createFromParcel of UsbConfiguration.java, there is a possible background activity launch (BAL) due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

Exploits (1)

nomisec WORKING POC
by uthrasri · poc
https://github.com/uthrasri/CVE-2023-40109

This repository contains functional exploit code for CVE-2023-40109, targeting USB accessory and device filtering mechanisms in Android. The code includes classes for USB accessory and device filtering, which can be manipulated to bypass intended restrictions.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: Android USB accessory and device filtering mechanisms
No auth needed
Prerequisites: Access to a vulnerable Android device with USB debugging enabled
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 7.8
EPSS 0.0019
EPSS Percentile 8.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-266
Status published
Products (5)
google/android 11.0
google/android 12.0
google/android 12.1
google/android 13.0
google/android 14.0
Published Feb 15, 2024
Tracked Since Feb 18, 2026