Описание
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, W920, W930, and W1000. Lack of a boundary check in STOP_KEEP_ALIVE_OFFLOAD leads to out-of-bounds access. An attacker can send a malformed message to the target through the Wi-Fi driver.
Затрагиваемое ПО
Samsung Exynos 980 firmwareSamsung Exynos 980Samsung Exynos 850 firmwareSamsung Exynos 850Samsung Exynos 1080 firmwareSamsung Exynos 1080Samsung Exynos 1280 firmwareSamsung Exynos 1280Samsung Exynos 1330 firmwareSamsung Exynos 1330Samsung Exynos 1380 firmwareSamsung Exynos 1380Samsung Exynos 1480 firmwareSamsung Exynos 1480Samsung Exynos w920 firmwareSamsung Exynos w920Samsung Exynos w930 firmwareSamsung Exynos w930Samsung Exynos w1000 firmwareSamsung Exynos w1000
CVSS
| Балл | 7.5 — высокая |
| Вектор | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Источники
https://semiconductor.samsung.com/support/quality-support/product-security-updates/