fkie_nvd - fkie_cve-2021-25487

fkie_cve-2021-25487

Vulnerability from fkie_nvd

Published

2021-10-06 18:15

Modified

2025-10-22 00:17

Severity ?

7.3 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

Lack of boundary checking of a buffer in set_skb_priv() of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read and it results in arbitrary code execution by dereference of invalid function pointer.

References

URL	Tags
mobile.security@samsung.com	https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=10	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=10	Vendor Advisory
134c704f-9b21-4f2e-91b3-4a467353bcc0	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-25487

Impacted products

Vendor	Product	Version
samsung	android	8.1
samsung	android	9.0
samsung	android	9.0
samsung	android	9.0
samsung	android	9.0
samsung	android	9.0
samsung	android	9.0
samsung	android	9.0
samsung	android	9.0
samsung	android	9.0
samsung	android	10.0
samsung	android	10.0
samsung	android	10.0
samsung	android	10.0
samsung	android	10.0
samsung	android	10.0
samsung	android	10.0
samsung	android	10.0
samsung	android	10.0
samsung	android	11.0
samsung	android	11.0
samsung	android	11.0
samsung	android	11.0
samsung	android	11.0
samsung	android	11.0
samsung	android	11.0
samsung	android	11.0
samsung	android	11.0

JSON

To clipboard

{
  "cisaActionDue": "2023-07-20",
  "cisaExploitAdd": "2023-06-29",
  "cisaRequiredAction": "Apply updates per vendor instructions or discontinue use of the product if updates are unavailable",
  "cisaVulnerabilityName": "Samsung Mobile Devices Out-of-Bounds Read Vulnerability",
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:samsung:android:8.1:-:*:*:*:*:*:*",
              "matchCriteriaId": "3E4F5C8C-AF0C-47F4-A3B0-A6D924FB72BB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:9.0:smr-apr-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "C690D390-5631-4294-AEB8-9A4C5564FA44",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:9.0:smr-aug-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "878D73CA-D317-4304-B7FB-00DE79DA7074",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:9.0:smr-feb-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "3B9A3B41-AAC9-4E23-A265-959A9852B94C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:9.0:smr-jan-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "B93A5F5F-BF53-44D3-9583-811CC284DF86",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:9.0:smr-jul-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "30154AB6-C412-48D6-9123-42639B116093",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:9.0:smr-jun-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "6538D01C-1645-4C4B-8559-EA20FFCD87F2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:9.0:smr-mar-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "62A933C7-9739-43DD-851E-0C2009858B77",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:9.0:smr-may-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "B5A0003A-1655-4945-988E-C79CC8A41B11",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:9.0:smr-sep-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "620EF7BF-1A66-4E96-A05A-2296C9272A34",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:10.0:smr-apr-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "5E21936D-9A60-4987-A6BF-C8F1885FB478",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:10.0:smr-aug-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "2559EDCB-09F8-4AC0-AE53-9B0E934D2D74",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:10.0:smr-feb-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "18C71F11-7599-4AE1-B455-C7A50D8D5F4D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:10.0:smr-jan-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "878AAF2D-E54A-4145-A618-81341ED4B0C8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:10.0:smr-jul-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "84641402-4778-418B-90F3-2AFAF90B4798",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:10.0:smr-jun-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "C72C3A92-43ED-40F4-B340-FE57FED9E762",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:10.0:smr-mar-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "7EBA9C21-8EDA-48B2-B63C-D50B2F83C31B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:10.0:smr-may-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "0CC8A026-B21C-47E0-B889-BD62F379737E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:10.0:smr-sep-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "5B1DCD3C-2418-4194-97FA-901550B2ED3D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:11.0:smr-apr-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "8D2D0083-0A85-47F7-A42D-2040A3BEC132",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:11.0:smr-aug-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "A3658A42-BCA9-4188-8B36-3C6599BBF83C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:11.0:smr-feb-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "25B42CE0-67DE-4611-8D70-DEEC975E32BA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:11.0:smr-jan-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "AC082E25-1B7D-473D-A066-1463E6321CD5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:11.0:smr-jul-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "2B088DE9-31F1-4737-8BC8-CC406F208ACB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:11.0:smr-jun-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "C2592B14-B3B7-4C85-88E8-5E12F6F50ED3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:11.0:smr-mar-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "BA51F5D5-D18D-426C-B09F-EE12CE11E9FB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:11.0:smr-may-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "6C946853-D56D-457C-A1CB-AD1A5BD56C41",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:samsung:android:11.0:smr-sep-2021-r1:*:*:*:*:*:*",
              "matchCriteriaId": "548BCC15-C6D8-4AE7-B167-4DD74382097B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Lack of boundary checking of a buffer in set_skb_priv() of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read and it results in arbitrary code execution by dereference of invalid function pointer."
    },
    {
      "lang": "es",
      "value": "Una falta de comprobaci\u00f3n de l\u00edmites de un b\u00fafer en la funci\u00f3n set_skb_priv() de modem interface driver versiones anteriores a SMR Oct-2021 Release 1, permite una lectura OOB y permite una ejecuci\u00f3n de c\u00f3digo arbitrario por desreferencia de un puntero de funci\u00f3n no v\u00e1lido"
    }
  ],
  "id": "CVE-2021-25487",
  "lastModified": "2025-10-22T00:17:27.163",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.6,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 7.3,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "LOW",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.0,
        "impactScore": 4.7,
        "source": "mobile.security@samsung.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2021-10-06T18:15:09.567",
  "references": [
    {
      "source": "mobile.security@samsung.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://security.samsungmobile.com/securityUpdate.smsb?year=2021\u0026month=10"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://security.samsungmobile.com/securityUpdate.smsb?year=2021\u0026month=10"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-25487"
    }
  ],
  "sourceIdentifier": "mobile.security@samsung.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-125"
        }
      ],
      "source": "mobile.security@samsung.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-125"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2021-25487 (GCVE-0-2021-25487)

Vulnerability from cvelistv5

Published

2021-10-06 17:10

Modified

2025-10-21 23:25

Severity ?

7.3 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N

CWE

CWE-125 - Out-of-bounds Read

Summary

References

URL

Tags

https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=10

x_refsource_MISC