Samsung Mobile Devices Exynos Chipsets NPU Driver Arbitrary Code Execution Vulnerability

Samsung Mobile Devices Exynos Chipsets NPU Driver Arbitrary Code Execution Vulnerability

CVE-2020-28343 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) (Exynos 980, 9820, and 9830 chipsets) software. The NPU driver allows attackers to execute arbitrary code because of unintended write and read operations on memory. The Samsung ID is SVE-2020-18610 (November 2020).

Learn more about our Cis Benchmark Audit For Mobile Devices.