CVE-2013-6775

Name of the Vulnerable Software and Affected Versions Chainfire SuperSU versions prior to 1.69

Description The issue allows attackers to gain privileges via shell metacharacters in the -c option to /system/xbin/su. Specifically, the `backtick or $() type of shell metacharacters can be used for this purpose.

Recommendations For Chainfire SuperSU versions prior to 1.69, update to version 1.69 or later to resolve the issue. As a temporary workaround, consider restricting access to the /system/xbin/su command to minimize the risk of exploitation. Avoid using the -c option with untrusted input until the issue is resolved.