OPPO Amber Lab
Jan 19, 2024 · Information Security
Uncovering Android AIDL/HIDL Service Vulnerabilities: Methods and Real CVE Examples
This article explains how Android AIDL and HIDL services are generated, outlines systematic steps to enumerate services, filter Java implementations, and automate information gathering, then details common memory‑corruption bug patterns and demonstrates real CVE‑2023‑21008 and CVE‑2023‑20766 exploits, concluding with a risk assessment.
AIDLAndroidCVE
0 likes · 9 min read