PT-2021-16563 · Samsung · Samsung Mobile Devices

Published

2021-03-26

Updated

2025-10-30

CVE-2021-25372

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Devices versions prior to SMR Mar-2021 Release 1

Description: The issue is related to an improper boundary check in the DSP driver, which allows out of bounds memory access. This can potentially lead to unauthorized access or other security issues. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations: For Samsung Mobile Devices versions prior to SMR Mar-2021 Release 1, update to SMR Mar-2021 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the DSP driver until a patch is available.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-703CWE-787

Related Identifiers

CVE-2021-25372

Affected Products

Samsung Mobile Devices

PT-2021-16563 · Samsung · Samsung Mobile Devices

CVE-2021-25372

Weakness Enumeration

Related Identifiers

Affected Products

References · 8