PT-2024-13446 · Unknown · Com.Eypcnnapps.Quickreboot

Published

2024-02-05

Updated

2024-02-13

CVE-2023-47355

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions com.eypcnnapps.quickreboot (aka Eyuep Can Yilmaz {ROOT] Quick Reboot) version 1.0.8

Description The application has exposed broadcast receivers for PowerOff, Reboot, and Recovery (e.g., com.eypcnnapps.quickreboot.widget.PowerOff) that are susceptible to unauthorized broadcasts because of missing input validation.

Recommendations For version 1.0.8, consider disabling the exposed broadcast receivers (e.g., com.eypcnnapps.quickreboot.widget.PowerOff) as a temporary workaround to prevent unauthorized broadcasts until a patch is available.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2023-47355

Affected Products

Com.Eypcnnapps.Quickreboot

PT-2024-13446 · Unknown · Com.Eypcnnapps.Quickreboot

CVE-2023-47355

Weakness Enumeration

Related Identifiers

Affected Products

References · 6