Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2020-8899
HistoryMay 06, 2020 - 5:15 p.m.

Heap overflow

2020-05-0617:15:00
PRIOn knowledge base
www.prio-n.com
7

9.6 High

AI Score

Confidence

High

0.034 Low

EPSS

Percentile

91.5%

JSON

There is a buffer overwrite vulnerability in the Quram qmg library of Samsung’s Android OS versions O(8.x), P(9.0) and Q(10.0). An unauthenticated, unauthorized attacker sending a specially crafted MMS to a vulnerable phone can trigger a heap-based buffer overflow in the Quram image codec leading to an arbitrary remote code execution (RCE) without any user interaction. The Samsung ID is SVE-2020-16747.

CPENameOperatorVersion
androideq8.0
androideq8.1
androideq9.0
androideq10.0

Related

nvd 1
cve 1
googleprojectzero 2
attackerkb 1
cert 1
cvelist 1
nvd
nvd
CVE-2020-8899
2020-05-06 17:15:14
cve
cve
CVE-2020-8899
2020-05-06 17:15:14
googleprojectzero
googleprojectzero
MMS Exploit Part 5: Defeating Android ASLR, Getting RCE
2020-08-12 00:00:00
MMS Exploit Part 1: Introduction to the Samsung Qmage Codec and Remote Attack Surface
2020-07-16 00:00:00
attackerkb
attackerkb
CVE-2020-8899 Samsung Quarm RCE via MMS
2020-05-06 00:00:00
cert
cert
Samsung Qmage codec for Android Skia library does not properly validate image files
2020-05-14 00:00:00
cvelist
cvelist
CVE-2020-8899 Memory corruption in Quram library when decoding qmg can lead to RCE
2020-05-06 00:00:00

9.6 High

AI Score

Confidence

High

0.034 Low

EPSS

Percentile

91.5%

JSON
Related for PRION:CVE-2020-8899
nvd1cve1googleprojectzero2attackerkb1cert1cvelist1