Exploitation Summary
EIP tracks 1 public exploit for CVE-2023-47889. PoCs published by actuator.
AI-analyzed exploit summary The repository contains a detailed technical analysis of CVE-2023-47889, focusing on the improper verification of broadcast intents in the Android application `com.bdrm.superreboot` version 1.0.3. It includes a proof-of-concept (PoC) demonstrating how unauthorized broadcasts can trigger critical system actions like device reboot or power off.
Description
The Android application BINHDRM26 com.bdrm.superreboot 1.0.3, exposes several critical actions through its exported broadcast receivers. These exposed actions can allow any app on the device to send unauthorized broadcasts, leading to unintended consequences. The vulnerability is particularly concerning because these actions include powering off, system reboot & entering recovery mode.
Exploits (1)
The repository contains a detailed technical analysis of CVE-2023-47889, focusing on the improper verification of broadcast intents in the Android application `com.bdrm.superreboot` version 1.0.3. It includes a proof-of-concept (PoC) demonstrating how unauthorized broadcasts can trigger critical system actions like device reboot or power off.
References (1)
Scores
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H