PT-2017-8444 · Samsung · Gt-I9195+4
Aristide Fattori
+3
·
Published
2017-04-13
·
Updated
2017-04-25
·
CVE-2016-4030
CVSS v3.1
6.8
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Samsung SM-G920F versions G920FXXU2COH2
Samsung SM-N9005 versions N9005XXUGBOK6
Samsung GT-I9192 versions I9192XXUBNB1
Samsung GT-I9195 versions I9195XXUCOL1
Samsung GT-I9505 versions I9505XXUHOJ2
Description
The issue allows an attacker to access the modem in USB configuration number 2 while the device is in a secure lockscreen state. This unintended availability enables the attacker to make phone calls, send text messages, or issue commands.
Recommendations
For Samsung SM-G920F version G920FXXU2COH2, update to a version that fixes the issue.
For Samsung SM-N9005 version N9005XXUGBOK6, update to a version that fixes the issue.
For Samsung GT-I9192 version I9192XXUBNB1, update to a version that fixes the issue.
For Samsung GT-I9195 version I9195XXUCOL1, update to a version that fixes the issue.
For Samsung GT-I9505 version I9505XXUHOJ2, update to a version that fixes the issue.
Exploit
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Gt-I9192
Gt-I9195
Gt-I9505
Sm-G920F
Sm-N9005