PT-2020-8695 · Samsung · Exynos

Published

2020-04-08

Updated

2020-04-13

CVE-2018-21051

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Samsung mobile devices with N(7.x) and O(8.x) (Exynos chipsets) software

Description An issue was discovered in the fingerprint Trustlet, leading to arbitrary code execution due to an invalid free. This issue affects Samsung mobile devices with Exynos chipsets, running N(7.x) and O(8.x) software.

Recommendations For Samsung mobile devices with N(7.x) and O(8.x) (Exynos chipsets) software, at the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74

Related Identifiers

CVE-2018-21051

Affected Products

Exynos

PT-2020-8695 · Samsung · Exynos

CVE-2018-21051

Weakness Enumeration

Related Identifiers

Affected Products

References · 4