PT-2020-13237 · Samsung · Exynos

Published

2020-05-11

Updated

2020-05-12

CVE-2020-12746

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Samsung mobile devices with O(8.X) Samsung mobile devices with P(9.0) Samsung mobile devices with Q(10.0)

Description An issue allows attackers to bypass the Secure Bootloader protection mechanism via a heap-based buffer overflow to execute arbitrary code on Samsung mobile devices with Exynos chipsets.

Recommendations For Samsung mobile devices with O(8.X), update to a version that fixes the Secure Bootloader bypass issue. For Samsung mobile devices with P(9.0), update to a version that fixes the Secure Bootloader bypass issue. For Samsung mobile devices with Q(10.0), update to a version that fixes the Secure Bootloader bypass issue.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2020-12746

Affected Products

Exynos

PT-2020-13237 · Samsung · Exynos

CVE-2020-12746

Weakness Enumeration

Related Identifiers

Affected Products

References · 3