PT-2020-8232 · Samsung · Samsung Mobile Devices+1

Published

2020-04-07

Updated

2020-04-09

CVE-2017-18683

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Samsung mobile devices with L(5.0/5.1) and M(6.0) software

Description: An issue was discovered that allows Hare Hunting during application installation through SVoice.

Recommendations: For Samsung mobile devices with L(5.0/5.1) and M(6.0) software, consider disabling the SVoice feature until a patch is available. Restrict access to application installation to minimize the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2017-18683

Affected Products

Svoice

Samsung Mobile Devices

PT-2020-8232 · Samsung · Samsung Mobile Devices+1

CVE-2017-18683

Weakness Enumeration

Related Identifiers

Affected Products

References · 4