Samsung Mobile Devices with Q(10.0) Software Out-of-Bounds Access and Device Reset Vulnerability (SVE-2020-18056)

Samsung Mobile Devices with Q(10.0) Software Out-of-Bounds Access and Device Reset Vulnerability (SVE-2020-18056)

CVE-2020-15584 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

An issue was discovered on Samsung mobile devices with Q(10.0) software. Attackers can trigger an out-of-bounds access and device reset via a 4K wallpaper image because ImageProcessHelper mishandles boundary checks. The Samsung ID is SVE-2020-18056 (July 2020).

Learn more about our Cis Benchmark Audit For Mobile Devices.