Shared Mapping of OBB Files in Android Kernel Allows Local Privilege Escalation

Shared Mapping of OBB Files in Android Kernel Allows Local Privilege Escalation

CVE-2019-9345 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

In the Android kernel in sdcardfs there is a possible violation of the separation of data between profiles due to shared mapping of obb files. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.

Learn more about our Cis Benchmark Audit For Google Android.