Samsung Mobile Devices vnswap Heap-Based Buffer Overflow Vulnerability

Samsung Mobile Devices vnswap Heap-Based Buffer Overflow Vulnerability

CVE-2018-21087 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on Samsung mobile devices with L(5.x), M(6.x), and N(7.x) software. There is a vnswap heap-based buffer overflow via the store function, with resultant privilege escalation. The Samsung ID is SVE-2017-10599 (January 2018).

Learn more about our Cis Benchmark Audit For Mobile Devices.