{"uuid": "cd39f11a-8b3f-4842-8b02-5de6205d17bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2011-1823", "type": "seen", "source": "https://t.me/arpsyndicate/1403", "content": "#ExploitObserverAlert\n\nCVE-2011-1823\n\nDESCRIPTION: Exploit Observer has 10 entries related to CVE-2011-1823. The vold volume manager daemon on Android 3.0 and 2.x before 2.3.4 trusts messages that are received from a PF_NETLINK socket, which allows local users to execute arbitrary code and gain root privileges via a negative index that bypasses a maximum-only signed integer check in the DirectVolume::handlePartitionAdded method, which triggers memory corruption, as demonstrated by Gingerbreak.\n\nFIRST-EPSS: 0.000730000\nNVD-IS: 10.0\nNVD-ES: 3.9", "creation_timestamp": "2023-12-05T05:49:03.000000Z"}