Elevating Privileges from Firefox to Android Root Security researchers at NebuSec have achieved the first full-chain remote code execution from a browser to the kernel on Android 17, exploiting Firefox 151 to gain root access. The exploit, dubbed CyberMeowfia, is open-source and targets specific kernels, with a live demonstration available for testing. IonStack The first browser-to-kernel full-chain RCE on Android 17 Source code will be publicly available in Check our open source code github.com/NebuSec/CyberMeowfia https://github.com/NebuSec/CyberMeowfia/ Step 1: Download vulnerable Firefox 151 fenix-151.0.multi.android-arm64-v8a.apk archive.mozilla.org https://archive.mozilla.org/pub/fenix/releases/151.0/android/fenix-151.0-android-arm64-v8a/fenix-151.0.multi.android-arm64-v8a.apk Step 2: Live PWN rootme.nebusec.ai/b9e3f1a4-7c82-4d6e-9a51-2f8c4b3e0d17 b9e3f1a4-7c82-4d6e-9a51-2f8c4b3e0d17 List of supported kernel Expected result: If your kernel is marked Supported , Step 2 should give you root and change your wallpaper as the visible success signal. If it is not supported yet, the phone will crash and reboot instead, without damaging the device. You can also modify the exploit yourself to support your device.