michalbednarski

Results 5 repositories owned by michalbednarski

ReparcelBug2

92
Stars
20
Forks
Watchers

Writeup and exploit for installed app to system privilege escalation on Android 12 Beta through CVE-2021-0928, a `writeToParcel`/`createFromParcel` serialization mismatch in `OutputConfiguration`

verified publisher icon michalbednarski

LeakValue

249
Stars
48
Forks
Watchers

Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel after recycle()

verified publisher icon michalbednarski

OrganizerTransaction

17
Stars
7
Forks
Watchers

PoC for CVE-2021-39749, allowing starting arbitrary Activity on Android 12L Beta

verified publisher icon michalbednarski

ReparcelBug

21
Stars
12
Forks
Watchers

CVE-2017-0806 PoC (Android GateKeeperResponse writeToParcel/createFromParcel mismatch)

verified publisher icon michalbednarski

TheLastBundleMismatch

52
Stars
8
Forks
Watchers

Writeup and exploit for CVE-2023-45777, bypass for Intent validation inside AccountManagerService on Android 13 despite "Lazy Bundle" mitigation

verified publisher icon michalbednarski