CVE-2014-8346

Samsung Find My Mobile - Denial of Service via Unvalidated Lock-Code Data

Title source: llm

Description

The Remote Controls feature on Samsung mobile devices does not validate the source of lock-code data received over a network, which makes it easier for remote attackers to cause a denial of service (screen locking with an arbitrary code) by triggering unexpected Find My Mobile network traffic.

References (2)

Core 2

Core References

Exploit x_refsource_misc

https://www.youtube.com/watch?v=Q3adkpOEjyI

Exploit x_refsource_misc

https://www.youtube.com/watch?v=YufuOYQoDOY

Scores

EPSS 0.0049

EPSS Percentile 65.7%

Details

CWE

CWE-94

Status published

Products (2)

samsung/findmymobile

samsung/mobile

Published Oct 24, 2014

Tracked Since Feb 18, 2026