{"vulnerability": "CVE-2011-1823", "sightings": [{"uuid": "28902332-a675-47e0-833e-03d29b923ade", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2011-1823", "type": "seen", "source": "MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d", "content": "", "creation_timestamp": "2025-08-31T03:01:07.000000Z"}, {"uuid": "4d4e8768-cb2c-4042-b8c3-8c6b39861137", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2011-1823", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/b9321d42-77a3-46a5-adf1-fc1613804471", "content": "", "creation_timestamp": "2026-02-02T12:27:14.705423Z"}, {"uuid": "3470274b-cca0-42f7-a20b-9d3d6acc63c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2011-1823", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/b9321d42-77a3-46a5-adf1-fc1613804471", "content": "", "creation_timestamp": "2026-02-02T12:27:14.705423Z"}, {"uuid": "6bc4c7ff-98d3-41cd-98e4-f038ff6d483a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2011-1823", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2023-06-14T21:10:03.000000Z"}, {"uuid": "37e1035a-7b05-4e8c-ba6b-b022bf04773e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2011-1823", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971698", "content": "", "creation_timestamp": "2024-12-24T20:32:57.383775Z"}, {"uuid": "cd39f11a-8b3f-4842-8b02-5de6205d17bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2011-1823", "type": "seen", "source": "https://t.me/arpsyndicate/1403", "content": "#ExploitObserverAlert\n\nCVE-2011-1823\n\nDESCRIPTION: Exploit Observer has 10 entries related to CVE-2011-1823. The vold volume manager daemon on Android 3.0 and 2.x before 2.3.4 trusts messages that are received from a PF_NETLINK socket, which allows local users to execute arbitrary code and gain root privileges via a negative index that bypasses a maximum-only signed integer check in the DirectVolume::handlePartitionAdded method, which triggers memory corruption, as demonstrated by Gingerbreak.\n\nFIRST-EPSS: 0.000730000\nNVD-IS: 10.0\nNVD-ES: 3.9", "creation_timestamp": "2023-12-05T05:49:03.000000Z"}, {"uuid": "eaa6f41c-d646-4117-87a9-124b8bed2022", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2011-1823", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:01.000000Z"}]}