U-Boot shell vulnerability resulting in Privilege escalation in a production device
The vulnerability concerns the U-Boot bootloader shell present in the firmware of Google Chromecast devices. The vulnerability allows an attacker to obtain elevated privileges in the device's production environment. The detailed technical mechanism has not been disclosed in the available description, however the CVSS vector (AV:N/AC:L/PR:N/UI:N) indicates that the attack can be conducted remotely, without user interaction and without required privileges.
An attacker can obtain elevated privileges on the device, which consequently may lead to complete takeover of the device, violation of confidentiality, integrity, and availability of Chromecast data and functions.
Apply patches available from the manufacturer according to references — Chromecast security bulletin dated 2023-12-01 available at: https://source.android.com/docs/security/bulletin/chromecast/2023-12-01. It is recommended to update the device firmware to the latest version.
Google Chromecast and Google Chromecast firmware — specific versions indicated in the Chromecast security bulletin from December 2023 (2023-12-01) available in manufacturer references
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HGoogle Chromecast
HWGooglewszystkie wersjeGoogle Chromecast Firmware
OSGoogle< 2023-10-01
Related vulnerabilities
Krytyczna podatność u-boot w Google Chromecast — dostęp do powłoki przez UART
Brak sprawdzania uprawnień w aplikacji KeyChainActivity na urządzeniach Google Chromecast
Podatność U-Boot w Google Chromecast umożliwiająca trwałe wykonanie kodu
RCE w Google Chromecast — trwałe wykonanie kodu przez błąd BCB
The API service on Google Home and Chromecast devices before mid-July 2018 does not prevent DNS rebinding atta...