Share
## https://sploitus.com/exploit?id=DEBBF023-F0CB-545F-B188-B665E14494E6
# CVE-2025-36924 Android Privilege Escalation Exploit

## Disclaimer
For research only. Use on authorized systems. Not responsible for misuse.

## Overview
Exploit for CVE-2025-36924, an out-of-bounds write in ss_LcsManagement.c's ss_DecodeLcsAssistDataReqMsg() function. Targets Google Android devices with vulnerable LCS handling, enabling remote priv esc without user interaction or extra privs. Tested on Android 15 builds prior to Nov 2025 patch.

Exploit leverages malformed LCS assist data to trigger OOB write, overwriting adjacent memory for ROP chain setup leading to kernel code exec. Requires ADB access or network vector via crafted SUPL message if device exposes LCS over untrusted nets.

## Requirements
- Python 3.8+
- Scapy for packet crafting
- Vulnerable Android device
- ADB setup for local testing

Run: `python cve-2025-36924.py --target  --payload `
![poc (3)](https://github.com/user-attachments/assets/c8255dec-cda7-417b-91bd-d482fa06379b)


For full binary - https://href.li/?https://satoshidisk.com/pay/CQ9ua4

Contact for custom variants or support: @B1gh0rnn on X