CVE-2017-18020

2018-01-0406:00:00

mitre

www.cve.org

AI Score

8.6

Confidence

High

EPSS

0.001

Percentile

34.3%

JSON

On Samsung mobile devices with L(5.x), M(6.x), and N(7.x) software and Exynos chipsets, attackers can execute arbitrary code in the bootloader because S Boot omits a size check during a copy of ramfs data to memory. The Samsung ID is SVE-2017-10598.

References

security.samsungmobile.com/securityUpdate.smsb