An issue was discovered on Samsung mobile devices with N(7.x) software. An attacker can boot a device with root privileges because the bootloader for the Qualcomm MSM8998 chipset lacks an integrity check of the system image, aka the "SamFAIL" issue. The Samsung ID is SVE-2017-10465 (November 2017).
References
Link | Resource |
---|---|
https://androidcommunity.com/samfail-method-gives-root-access-to-samsung-galaxy-note-8-snapdragon-variant-20171009/ | Third Party Advisory |
https://security.samsungmobile.com/securityUpdate.smsb | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-04-07T15:54:28
Updated: 2020-04-07T15:54:28
Reserved: 2020-04-07T00:00:00
Link: CVE-2017-18649
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-04-07T16:15:15.167
Modified: 2020-04-08T17:20:35.547
Link: CVE-2017-18649
JSON object: View
Redhat Information
No data.
CWE