Race condition and buffer overflow vulnerability in Samsung Secure Driver (SVE-2017-8973, SVE-2017-8974, SVE-2017-8975)

Race condition and buffer overflow vulnerability in Samsung Secure Driver (SVE-2017-8973, SVE-2017-8974, SVE-2017-8975)

CVE-2017-18647 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on Samsung mobile devices with M(6,x) and N(7.0) software. The TA Scrypto v1.0 implementation in Secure Driver has a race condition with a resultant buffer overflow. The Samsung IDs are SVE-2017-8973, SVE-2017-8974, and SVE-2017-8975 (November 2017).

Learn more about our Cis Benchmark Audit For Mobile Devices.