CVE-2021-25370
Samsung Mobile Devices Memory Corruption Vulnerability
CVSS
—
Sin CVSS
EPSS
0.9%
p55
KEV
SÍ
8 nov 2022
Exploit Today
67
0-100
Publicado: — · Última mod.: —
Producto
Samsung / Mobile Devices
Vulnerabilidad
Samsung Mobile Devices Memory Corruption Vulnerability
Añadido a KEV
8 nov 2022
Remediar antes de
29 nov 2022
Uso conocido en ransomware
No
Descripción resumida
Samsung mobile devices using Mali GPU contain an incorrect implementation handling file descriptor in dpu driver. This incorrect implementation results in memory corruption, leading to kernel panic. This vulnerability was chained with CVE-2021-25337 and CVE-2021-25369.
Acción requerida
Apply updates per vendor instructions.
Notas
https://security.samsungmobile.com/securityUpdate.smsb; https://nvd.nist.gov/vuln/detail/CVE-2021-25370