CVE-2021-25489
Samsung Mobile Devices Improper Input Validation Vulnerability
CVSS
—
No CVSS
EPSS
0.5%
p39
KEV
YES
Jun 29, 2023
Exploit Today
62
0-100
Published: — · Last modified: —
Product
Samsung / Mobile Devices
Vulnerability
Samsung Mobile Devices Improper Input Validation Vulnerability
Added to KEV
Jun 29, 2023
Remediate by
Jul 20, 2023
Known ransomware use
No
Summary description
Samsung mobile devices contain an improper input validation vulnerability within the modem interface driver that results in a format string bug leading to kernel panic.
Required action
Apply updates per vendor instructions or discontinue use of the product if updates are unavailable
Notes
https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=10; https://nvd.nist.gov/vuln/detail/CVE-2021-25489