CVE-2021-25487

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Devices versions prior to SMR Oct-2021 Release 1

Description: The issue is related to a lack of boundary checking of a buffer in the set skb priv() function of the modem interface driver. This allows an out-of-bounds read, which can result in arbitrary code execution by dereferencing an invalid function pointer.

Recommendations: For versions prior to SMR Oct-2021 Release 1, update to SMR Oct-2021 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the modem interface driver to minimize the risk of exploitation.