canyie/MagiskEoP

Releases0

Stars205

Exploit and writeup for installed app to root privilege escalation through CVE-2024-48336 (Magisk Bug #8279), Privileges Escalation / Arbitrary Code Execution Vulnerability

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-48336 ↗	Nov 4, 2024Monday, 4 November 2024, 18:15	8.4 HIGH	—
The install() function of ProviderInstaller.java in Magisk App before canary version 27007 does not verify the GMS app before loading it, which allows a local untrusted app with no additional privileges to silently execute arbitrary code in the Magisk app and escalate privileges to root via a crafted package, aka Bug #8279. User interaction is not needed for exploitation.