Not SimonSecurity researcher Man Yue Mo provides a vulnerability analysis on CVE-2023-6241 (no CVSS score, disclosed 14 December 2023) a Use After Free (UAF) vulnerability in Arm Mali GPU which allows a malicious Android app to gain arbitrary kernel code execution and root on the device. "What is interesting about this vulnerability is that it is a logic bug in the memory management unit of the Arm Mali GPU and it is capable of bypassing Memory Tagging Extension (MTE)" 🔗 https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/
Gaining kernel code execution on an MTE-enabled Pixel 8
In this post, I’ll look at CVE-2023-6241, a vulnerability in the Arm Mali GPU that allows a malicious app to gain arbitrary kernel code execution and root on an Android phone. I’ll show how this vulnerability can be exploited even when Memory Tagging Extension (MTE), a powerful mitigation, is enabled on the device.