CyberSec.Space Logo
Back to CVE Browser

CVE-2018-21087

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1070%
EPSS Percentile7.65th
PublishedApr 8, 2020
Last ModifiedNov 21, 2024

Vulnerability Description

An issue was discovered on Samsung mobile devices with L(5.x), M(6.x), and N(7.x) software. There is a vnswap heap-based buffer overflow via the store function, with resultant privilege escalation. The Samsung ID is SVE-2017-10599 (January 2018).

Affected Platforms (CPE)

πŸ’»
Google

Android

= 5.0
πŸ’»
Google

Android

= 5.0.1
πŸ’»
Google

Android

= 5.0.2
πŸ’»
Google

Android

= 5.1
πŸ’»
Google

Android

= 5.1.0
πŸ’»
Google

Android

= 5.1.1
πŸ’»
Google

Android

= 6.0
πŸ’»
Google

Android

= 6.0.1
πŸ’»
Google

Android

= 7.0
πŸ’»
Google

Android

= 7.1.0
πŸ’»
Google

Android

= 7.1.1
πŸ’»
Google

Android

= 7.1.2

References & Advisories

πŸ”— https://security.samsungmobile.com/securityUpdate.smsb
πŸ”— https://security.samsungmobile.com/securityUpdate.smsb

Related Vulnerabilities

CVE-2012-525410.0

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 ...

CVE-2012-525510.0

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 ...

CVE-2019-1106310.0

A broken access control vulnerability in SmartHome app (Android versions up to 3.0.42_190515, ios versions up to 2.0.22) allows an...

CVE-2012-525610.0

Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11....