THREATOPS
THREAT OPSCVEs › CVE-2021-25487

CVE-2021-25487 — Samsung Mobile Devices Out-of-Bounds Read Vulnerability

CISA KEVExploited: confirmedSamsung

Samsung mobile devices contain an out-of-bounds read vulnerability within the modem interface driver due to a lack of boundary checking of a buffer in set_skb_priv(), leading to remote code execution by dereference of an invalid function pointer.

Vulnerability details