logo

CVE-2021-25370 - Samsung Mobile Devices Memory Corruption Vulnerability

CVE-2021-25370

Samsung | Mobile Devices

  • Date Added:
  • 2022-11-08
  • Due Date:
  • 2022-11-29
Vulnerability Name

Samsung Mobile Devices Memory Corruption Vulnerability

Description

Samsung mobile devices using Mali GPU contain an incorrect implementation handling file descriptor in dpu driver. This incorrect implementation results in memory corruption, leading to kernel panic. This vulnerability was chained with CVE-2021-25337 and CVE-2021-25369.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes
https://security.samsungmobile.com/securityUpdate.smsb; https://nvd.nist.gov/vuln/detail/CVE-2021-25370

Free security scan for your website