EUVD-2018-13600

Malware in sbrugna...

Information disclosure

An issue was discovered on Samsung mobile devices with N7.x MediaTek chipsets software. There is information disclosure of kernel stack memory in a MediaTek driver. The Samsung ID is SVE-2018-11852 July 2018...

CVE-2018-21038

An issue was discovered on Samsung mobile devices with N7.x software. The Secure Folder app's startup logic allows authentication bypass. The Samsung ID is SVE-2018-11628 December 2018...

CVE-2018-21038

CVE-2018-21038 concerns Samsung mobile devices running N(7.x) software, where the Secure Folder app’s startup logic permits an authentication bypass. The vulnerability is tied to the Secure Folder startup sequence, enabling bypass of authentication for affected devices (Samsung ID SVE-2018-11628)...

CVE-2018-21038

An issue was discovered on Samsung mobile devices with N7.x software. The Secure Folder app's startup logic allows authentication bypass. The Samsung ID is SVE-2018-11628 December 2018...

CVE-2018-21082

Affected product: Samsung mobile devices running N(7.x) with Dex Station. Issue: Dex Station enables App Pinning bypass and lock-screen bypass via the To unpin screen lock option. Root cause: bypass of app pinning/lock screen through the “Use screen lock type to unpin” flow. Impact: allows bypass...

CVE-2018-21088

CVE-2018-21088 affects Samsung mobile devices running N(7.x). The issue is that InputMethodManagerService exposes an unprotected system service, enabling an attacker to trigger a reboot. The description in connected sources confirms the root cause and impact, but there are no specific patch versi...

CVE-2017-18673

An issue was discovered on Samsung mobile devices with N7.x software. An attacker can disable the Location service on a locked device, making it impossible for the rightful owner to find a stolen device. The Samsung ID is SVE-2017-8524 May 2017...

CVE-2017-18669

An issue was discovered on Samsung mobile devices with N7.x software. Persona has an unprotected API that allows launch of any activity with system privileges. The Samsung ID is SVE-2017-9000 June 2017...

CVE-2017-18649

An issue was discovered on Samsung mobile devices with N7.x software. An attacker can boot a device with root privileges because the bootloader for the Qualcomm MSM8998 chipset lacks an integrity check of the system image, aka the "SamFAIL" issue. The Samsung ID is SVE-2017-10465 November 2017...

Code injection

An issue was discovered on Samsung mobile devices with N7.x software. An attacker can boot a device with root privileges because the bootloader for the Qualcomm MSM8998 chipset lacks an integrity check of the system image, aka the "SamFAIL" issue. The Samsung ID is SVE-2017-10465 November 2017...

Design/Logic Flaw

An issue was discovered on Samsung mobile devices with N7.x software. An attacker can disable the Location service on a locked device, making it impossible for the rightful owner to find a stolen device. The Samsung ID is SVE-2017-8524 May 2017...

CVE-2017-18650

An issue was discovered on Samsung mobile devices with N7.x software. There is a WifiStateMachine IllegalArgumentException and reboot if a malformed wpasupplicant.conf is read. The Samsung ID is SVE-2017-9828 October 2017...

CVE-2017-18650

The CVE-2017-18650 entry affects Samsung mobile devices running N(7.x) software. The issue is triggered when reading a malformed wpa_supplicant.conf, causing the WifiStateMachine to throw an IllegalArgumentException and the device to reboot. Samsung’s internal tracking references SVE-2017-9828 (O...

CVE-2017-18663

An issue was discovered on Samsung mobile devices with N7.x software. Because of missing Intent exception handling, systemserver can have a NullPointerException with a crash of a system process. The Samsung IDs are SVE-2017-9122, SVE-2017-9123, SVE-2017-9124, and SVE-2017-9126 July 2017...

CVE-2017-18663

CVE-2017-18663 affects Samsung mobile devices running N(7.x). Root cause: missing Intent exception handling causes a NullPointerException in system_server, potentially crashing a system process. Samsung identifiers: SVE-2017-9122, SVE-2017-9123, SVE-2017-9124, SVE-2017-9126 (July 2017). Connected...

CVE-2017-18669

CVE-2017-18669 affects Samsung mobile devices running N(7.x) software. The issue is caused by Persona exposing an unprotected API that allows launching any activity with system privileges, enabling privilege escalation from a normal user to a system-level operation. Root cause: unprotected API ex...

CVE-2017-18673

CVE-2017-18673 affects Samsung mobile devices running N(7.x) software. The issue allows an attacker to disable the Location service on a locked device, preventing the rightful owner from locating a stolen device. The Samsung ID is SVE-2017-8524 (May 2017). Public documents do not provide details ...

CVE-2017-18673

An issue was discovered on Samsung mobile devices with N7.x software. An attacker can disable the Location service on a locked device, making it impossible for the rightful owner to find a stolen device. The Samsung ID is SVE-2017-8524 May 2017...

Buffer overflow

On Samsung mobile devices with N7.x software, a buffer overflow in the vision service allows code execution in a privileged process via a large frame size, aka SVE-2017-11165...