CVE-2018-21076

An issue was discovered on Samsung mobile devices with N7.x Exynos8890/8895 chipsets software. There is information disclosure a KASLR offset in the Secure Driver via a modified trustlet. The Samsung ID is SVE-2017-10987 April 2018...

CVE-2018-21076

CVE-2018-21076 concerns Samsung mobile devices with N(7.x) Exynos8890/8895 SoCs, where a modified trustlet in the Secure Driver can disclose a KASLR offset. The core issue is information disclosure rather than code execution, with a local access vector implied by the need to interact with the Sec...

CVE-2017-18690

An issue was discovered on Samsung mobile devices with KK4.4, L5.0/5.1, M6.0, and N7.0 Exynos54xx, Exynos7420, Exynos8890, or Exynos8895 chipsets software. There is a buffer overflow in the sensor hub. The Samsung ID is SVE-2016-7484 January 2017...

CVE-2017-18690

CVE-2017-18690 involves a buffer overflow in the sensor hub of certain Samsung mobile devices. Affected platforms include KK (4.4), L (5.0/5.1), M (6.0), and N (7.0) with Exynos54xx, Exynos7420, Exynos8890, or Exynos8895 chipsets. The available public description notes a sensor-hub buffer overflo...

CVE-2017-18692

An issue was discovered on Samsung mobile devices with M6.0 and N7.0 MSM8939, MSM8996, MSM8998, Exynos7580, Exynos8890, or Exynos8895 chipsets software. There is a race condition, with a resultant buffer overflow, in the sects touchscreen sysfs interface. The Samsung ID is SVE-2016-7501 January...

Heap overflow

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 MSM8996, MSM8998, Exynos7420, Exynos7870, Exynos8890, and Exynos8895 chipsets software. A heap overflow in the keymaster Trustlet allows attackers to write to TEE memory, and achieve arbitrary code execution. The Samsung ...

CVE-2019-20607

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 MSM8996, MSM8998, Exynos7420, Exynos7870, Exynos8890, and Exynos8895 chipsets software. A heap overflow in the keymaster Trustlet allows attackers to write to TEE memory, and achieve arbitrary code execution. The Samsung ...

CVE-2020-10849

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 Exynos7885, Exynos8895, and Exynos9810 chipsets software. The Gatekeeper trustlet allows a brute-force attack on the screen lock password. The Samsung ID is SVE-2019-14575 January 2020...

CVE-2020-10849

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 Exynos7885, Exynos8895, and Exynos9810 chipsets software. The Gatekeeper trustlet allows a brute-force attack on the screen lock password. The Samsung ID is SVE-2019-14575 January 2020...

CVE-2020-10849

Technical details (affected components, root cause, impact, or fixes) are not publicly disclosed in the provided documents. Monitor for updates from official sources as additional details may be published later.