## https://sploitus.com/exploit?id=0AB1BE72-CD32-5A97-AEAD-4C43D8A63BDD
This is a proof-of-concept (PoC) application demonstrating the power of an Android kernel arbitrary R/W, specifically targeting CVE-2019-2215. The application, named Qu1ckR00t, is designed to exploit this vulnerability to achieve root access on an Android device.
The exploit is implemented in the native/poc.c file, which is compiled with the Android NDK. The YOLO-installer™ for Magisk is located in app/src/main/res/raw/magisk_install, and has only been tested on a AArch64 Pixel 2 running Android Q.
The application has several limitations, including that Magisk was never meant to be installed without a patched boot image, and Magisk install is core-mode only. Additionally, Magisk app SU notifications do not appear to be working due to the request intent not making it.
The application is designed to be used on a device with a vulnerable kernel, and should not be used on a personal device with valuable user data. The application has only been tested on a Pixel 2, and running it on any other device/kernel may lead to a crash or even data loss.