PT-2020-7978 · Samsung · Shannon333+3

Published

2020-04-07

Updated

2020-04-08

CVE-2016-11049

CVSS v2.0

6.4

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions: Samsung mobile devices with software through 2016-01-16

Description: An issue was discovered on Samsung mobile devices, where the IMEI may be retrieved and modified due to an error in managing key information. This is related to the Shannon333/308/310 chipsets.

Recommendations: For Samsung mobile devices with software through 2016-01-16, consider updating the software to a version released after 2016-01-16 to resolve the issue. As a temporary workaround, restrict access to sensitive information related to the IMEI to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2016-11049

Affected Products

Samsung Mobile Devices

Shannon308

Shannon310

Shannon333

PT-2020-7978 · Samsung · Shannon333+3

CVE-2016-11049

Related Identifiers

Affected Products

References · 4