Arbitrary APK Installation Vulnerability on Samsung Mobile Devices

Arbitrary APK Installation Vulnerability on Samsung Mobile Devices

CVE-2018-21042 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) software. Dual Messenger allows installation of an arbitrary APK with resultant privileged code execution. The Samsung ID is SVE-2018-13299 (December 2018).

Learn more about our Cis Benchmark Audit For Mobile Devices.