CVE-2017-18677

HIGH

Samsung Mobile <M6.0,N7.x - Info Disclosure

Title source: llm
STIX 2.1

Description

An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) software. Because of an unprotected Intent, an attacker can reset the configuration of certain applications. The Samsung ID is SVE-2016-7142 (April 2017).

References (1)

Core 1
Core References
Vendor Advisory x_refsource_confirm
https://security.samsungmobile.com/securityUpdate.smsb

Scores

CVSS v3 7.5
EPSS 0.0033
EPSS Percentile 25.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-862
Status published
Products (5)
google/android 6.0
google/android 7.0
google/android 7.1.0
google/android 7.1.1
google/android 7.1.2
Published Apr 07, 2020
Tracked Since Feb 18, 2026