Описание
An issue was discovered on Samsung mobile devices with Q(10.0) (Exynos990 chipsets) software. The S3K250AF Secure Element CC EAL 5+ chip allows attackers to execute arbitrary code and obtain sensitive information via a buffer overflow. The Samsung ID is SVE-2020-18632 (November 2020).
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*
cpe:2.3:h:samsung:exynos_990:-:*:*:*:*:*:*:*
EPSS
Процентиль: 4%
0.00018
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-120
Связанные уязвимости
github
больше 3 лет назад
An issue was discovered on Samsung mobile devices with Q(10.0) (Exynos990 chipsets) software. The S3K250AF Secure Element CC EAL 5+ chip allows attackers to execute arbitrary code and obtain sensitive information via a buffer overflow. The Samsung ID is SVE-2020-18632 (November 2020).
EPSS
Процентиль: 4%
0.00018
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-120