# Elevating Privileges from Firefox to Android Root

> Source: <https://rootme.nebusec.ai/>
> Published: 2026-07-03 22:39:22+00:00

IonStack

The first browser-to-kernel full-chain RCE on Android 17

Source code will be publicly available in

[Check our open source code github.com/NebuSec/CyberMeowfia](https://github.com/NebuSec/CyberMeowfia/)

[Step 1: Download vulnerable Firefox 151 fenix-151.0.multi.android-arm64-v8a.apk (archive.mozilla.org)](https://archive.mozilla.org/pub/fenix/releases/151.0/android/fenix-151.0-android-arm64-v8a/fenix-151.0.multi.android-arm64-v8a.apk)

[Step 2: Live PWN rootme.nebusec.ai/b9e3f1a4-7c82-4d6e-9a51-2f8c4b3e0d17](b9e3f1a4-7c82-4d6e-9a51-2f8c4b3e0d17)

## List of supported kernel

**Expected result:**

If your kernel is marked **Supported**, Step 2 should give you root and change your wallpaper as the visible success signal.

If it is not supported yet, the phone will crash and reboot instead, without damaging the device. You can also modify the exploit yourself to support your device.
