Описание
An issue was discovered on Samsung mobile devices with Q(10.0) software. Attackers can trigger an out-of-bounds access and device reset via a 4K wallpaper image because ImageProcessHelper mishandles boundary checks. The Samsung ID is SVE-2020-18056 (July 2020).
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*
EPSS
Процентиль: 16%
0.00053
Низкий
5.5 Medium
CVSS3
7.1 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
An issue was discovered on Samsung mobile devices with Q(10.0) software. Attackers can trigger an out-of-bounds access and device reset via a 4K wallpaper image because ImageProcessHelper mishandles boundary checks. The Samsung ID is SVE-2020-18056 (July 2020).
EPSS
Процентиль: 16%
0.00053
Низкий
5.5 Medium
CVSS3
7.1 High
CVSS2
Дефекты
CWE-20