CVE-2016-11046

Name of the Vulnerable Software and Affected Versions: Samsung mobile devices with JBP(4.3) Samsung mobile devices with KK(4.4) Samsung mobile devices with L(5.0/5.1)

Description: An issue was discovered on Samsung mobile devices due to a misused whitelist, allowing attackers to reach the radio layer to place calls or send SMS messages.

Recommendations: For Samsung mobile devices with JBP(4.3), consider disabling access to the radio layer until a patch is available. For Samsung mobile devices with KK(4.4), restrict the use of the vulnerable whitelist to minimize the risk of exploitation. For Samsung mobile devices with L(5.0/5.1), avoid using the affected radio layer functionality until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.