CVE-2017-18662

HIGH

Samsung Mobile <M6.0,N7.x - Info Disclosure

Title source: llm
STIX 2.1

Description

An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) software. Data outside of the rkp log buffer boundary is read, causing an information leak. The Samsung ID is SVE-2017-9109 (July 2017).

References (1)

Core 1
Core References
Vendor Advisory x_refsource_confirm
https://security.samsungmobile.com/securityUpdate.smsb

Scores

CVSS v3 7.5
EPSS 0.0041
EPSS Percentile 33.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-119
Status published
Products (5)
google/android 6.0
google/android 7.0
google/android 7.1.0
google/android 7.1.1
google/android 7.1.2
Published Apr 07, 2020
Tracked Since Feb 18, 2026