Exynos AP Chipsets: Heap-Based Buffer Overflow in OTP Service (SVE-2016-7114)

Exynos AP Chipsets: Heap-Based Buffer Overflow in OTP Service (SVE-2016-7114)

CVE-2016-11025 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on Samsung mobile devices with software through 2016-09-13 (Exynos AP chipsets). There is a memcpy heap-based buffer overflow in the OTP service. The Samsung ID is SVE-2016-7114 (December 2016).

Learn more about our Cis Benchmark Audit For Mobile Devices.