¶Abstract The Android Application Sandbox is the cornerstone of the Android Security Model, which protects and isolates each application’s process and data from the others. Attackers usually need kernel vulnerabilities to escape the sandbox, which by themselves proved to be quite rare and difficult due to emerging mitigation and attack surfaces tightened. However, we found a vulnerability in the Android 11 stable that breaks the dam purely from userspace. Combined with other 0days we disco...
