CVE-2017-7978
HIGHSamsung Mobile L(5.0/5.1) M(6.0) N(7.x) - Unauthorized Sensitive Information Exposure via World-Readable Log File
Title source: llmDescription
Samsung Android devices with L(5.0/5.1), M(6.0), and N(7.x) software allow attackers to obtain sensitive information by reading a world-readable log file after an unexpected reboot. The Samsung ID is SVE-2017-8290.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://security.samsungmobile.com/smrupdate.html#SMR-APR-2017
Scores
CVSS v3
7.5
EPSS
0.0031
EPSS Percentile
53.9%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (7)
samsung/samsung_mobile
5.0
samsung/samsung_mobile
5.1
samsung/samsung_mobile
6.0
samsung/samsung_mobile
7.0
samsung/samsung_mobile
7.1
samsung/samsung_mobile
7.1.1
samsung/samsung_mobile
7.1.2
Published
Apr 19, 2017
Tracked Since
Feb 18, 2026