CVE-2021-25395 - Samsung Mobile Devices Race Condition Vulnerability
Project:Samsung
Product:Mobile Devices
Date Added:2023-06-29Due Date:2023-07-20
Vulnerability Name
Samsung Mobile Devices Race Condition Vulnerability
Description
Samsung mobile devices contain a race condition vulnerability within the MFC charger driver that leads to a use-after-free allowing for a write given a radio privilege is compromised.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions or discontinue use of the product if updates are unavailable
Additional Notes
https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=5
https://nvd.nist.gov/vuln/detail/CVE-2021-25395