CVE-2021-25487 - Samsung Mobile Devices Out-of-Bounds Read Vulnerability
CVE-2021-25487
Samsung | Mobile Devices
- Date Added:
- 2023-06-29
- Due Date:
- 2023-07-20
- Vulnerability Name
Samsung Mobile Devices Out-of-Bounds Read Vulnerability
- Description
Samsung mobile devices contain an out-of-bounds read vulnerability within the modem interface driver due to a lack of boundary checking of a buffer in set_skb_priv(), leading to remote code execution by dereference of an invalid function pointer.
- Known To Be Used in Ransomware Campaigns?
Unknown
- Action
Apply updates per vendor instructions or discontinue use of the product if updates are unavailable
- Additional Notes
- https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=10; https://nvd.nist.gov/vuln/detail/CVE-2021-25487
Free security scan for your website