CVE-2017-0824

Vulnerability

A critical elevation-of-privilege vulnerability exists in the Broadcom Wi-Fi driver used by the Android kernel. The issue is identified by Android ID A-37622847 and is addressed in the October 2017 Pixel/Nexus Security Bulletin [1]. This vulnerability affects Android kernel versions and can be exploited remotely without user interaction [1].

Exploitation

An attacker can exploit this vulnerability remotely over the air, requiring no additional execution privileges and no user interaction [1]. The exact steps involve sending a specially crafted Wi-Fi frame to a vulnerable device, which triggers the flaw in the Broadcom driver.

Impact

Successful exploitation leads to elevation of privilege, potentially allowing the attacker to execute arbitrary code within the context of the kernel [1]. This can result in full compromise of the affected Android device's security, including access to all user data and system functions.

Mitigation

Google released a fix as part of the 2017-10-01 Pixel/Nexus Security Bulletin [1]. Users should apply the Android security update dated October 5, 2017, or later, which includes the patch for this vulnerability. No workarounds are mentioned in the available references, and it is not listed on the CISA KEV [1].