Race condition and buffer overflow vulnerability in Samsung mobile devices with M(6.0) and N(7.0) software

Race condition and buffer overflow vulnerability in Samsung mobile devices with M(6.0) and N(7.0) software

CVE-2017-18692 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on Samsung mobile devices with M(6.0) and N(7.0) (MSM8939, MSM8996, MSM8998, Exynos7580, Exynos8890, or Exynos8895 chipsets) software. There is a race condition, with a resultant buffer overflow, in the sec_ts touchscreen sysfs interface. The Samsung ID is SVE-2016-7501 (January 2017).

Learn more about our Cis Benchmark Audit For Mobile Devices.