7 points | by ledoge 4 days ago ago
2 comments
Is Qualcomm serious? The kernel commandline parameter injection is basically the same thing from a decade ago on Motorola phones [0].
0: https://alephsecurity.com/2017/05/23/nexus6-initroot/
Interesting side note: By design, Android lets any app escalate its privileges to root when SELinux is disabled: https://www.reddit.com/r/Android/comments/lfye5r/comment/gmo...
Therefore, just the boot parameter injection can be used to get temporary root privileges on a whole bunch of phones.
Is Qualcomm serious? The kernel commandline parameter injection is basically the same thing from a decade ago on Motorola phones [0].
0: https://alephsecurity.com/2017/05/23/nexus6-initroot/
Interesting side note: By design, Android lets any app escalate its privileges to root when SELinux is disabled: https://www.reddit.com/r/Android/comments/lfye5r/comment/gmo...
Therefore, just the boot parameter injection can be used to get temporary root privileges on a whole bunch of phones.