On Samsung mobile devices with M(6.0) and N(7.x) software, a heap overflow in the sensorhub binder service leads to code execution in a privileged process, aka SVE-2017-10991.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HSamsung Mobile
OSSamsung6.07.07.17.1.17.1.2
π’
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
RCEMemory
CWE
Related vulnerabilities
CVE-2018-9139CRITICAL9.8ten sam produkt
On Samsung mobile devices with N(7.x) software, a buffer overflow in the vision service allows code execution ...
CVE-2017-5538CRITICAL9.8ten sam produkt
The kbase_dispatch function in arm/t7xx/r5p0/mali_kbase_core_linux.c in the GPU driver on Samsung devices with...
CVE-2016-9965CRITICAL9.8ten sam produkt
Lack of appropriate exception handling in some receivers of the Telecom application on Samsung Note devices wi...
CVE-2016-9966CRITICAL9.8ten sam produkt
Lack of appropriate exception handling in some receivers of the Telecom application on Samsung Note devices wi...
CVE-2016-9967CRITICAL9.8ten sam produkt
Lack of appropriate exception handling in some receivers of the Telecom application on Samsung Note devices wi...