[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-79987":3},{"id":4,"name":5,"fullName":6,"owner":7,"repo":5,"description":8,"homepage":8,"htmlUrl":8,"language":9,"languages":8,"totalLinesOfCode":8,"stars":10,"forks":11,"watchers":12,"openIssues":13,"contributorsCount":13,"subscribersCount":13,"size":13,"stars1d":14,"stars7d":15,"stars30d":16,"stars90d":13,"forks30d":13,"starsTrendScore":17,"compositeScore":18,"rankGlobal":8,"rankLanguage":8,"license":8,"archived":19,"fork":19,"defaultBranch":20,"hasWiki":21,"hasPages":19,"topics":22,"createdAt":8,"pushedAt":8,"updatedAt":23,"readmeContent":24,"aiSummary":25,"trendingCount":13,"starSnapshotCount":13,"syncStatus":26,"lastSyncTime":27,"discoverSource":28},79987,"CVE-2026-0073-Android-adbd-authentication-bypass-POC","SecTestAnnaQuinn\u002FCVE-2026-0073-Android-adbd-authentication-bypass-POC","SecTestAnnaQuinn",null,"Python",77,36,1,0,3,4,6,9,4.7,false,"main",true,[],"2026-06-12 02:03:56","Research on CVE-2026-0073. An auth bypass allowing any attacker with local network access to connect to an Android device with dev tools and wireless debugging or ADB-over-TCP enabled. Device needs to have been paired before.\n\nThis has been tested working on Android 14 in Android Studio. Should work on others as well but exploitability may vary.\n\nHere you can see me removing the key needed to attach to ADB after starting the service and connecting to it to store a key by pairing. Afterwards I cannot connect via ADB.\n\n\u003Cimg width=\"442\" height=\"156\" alt=\"Screenshot 2026-05-05 155745\" src=\"https:\u002F\u002Fgithub.com\u002Fuser-attachments\u002Fassets\u002Fe3fb0d8e-f3a3-45cd-9550-7032804b7f2c\" \u002F>\n\nHere you can see the bypass working without issue even though there is no key present to use for connections.\n\n\u003Cimg width=\"1104\" height=\"147\" alt=\"image\" src=\"https:\u002F\u002Fgithub.com\u002Fuser-attachments\u002Fassets\u002F7d5e0f8b-e822-41dd-8e6e-d20163747b3e\" \u002F>\n","该项目研究了CVE-2026-0073漏洞，该漏洞允许拥有本地网络访问权限的攻击者绕过认证连接到开启了无线调试或ADB-over-TCP功能的Android设备。其核心功能在于演示了如何在不需要有效密钥的情况下实现对ADB服务的未授权访问，通过Python脚本展示了从移除已配对密钥到重新建立连接的过程。技术特点包括针对特定版本（如Android 14）进行了测试验证，并可能适用于其他版本但具体效果会有所不同。此项目适用于安全研究人员、渗透测试人员以及Android开发者评估设备安全性时参考使用。",2,"2026-06-11 03:58:48","CREATED_QUERY"]