CVE-2018-21074

LOW

Samsung Android M(6.x) - Unauthorized Information Disclosure via Trustlet Debug Log

Title source: llm
STIX 2.1

Description

An issue was discovered on Samsung mobile devices with M(6.x) (Exynos or Qualcomm chipsets) software. There is information disclosure from a Trustlet via the debug log. The Samsung ID is SVE-2017-10638 (April 2018).

References (1)

Core 1
Core References
Vendor Advisory x_refsource_confirm
https://security.samsungmobile.com/securityUpdate.smsb

Scores

CVSS v3 3.3
EPSS 0.0013
EPSS Percentile 3.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Details

CWE
CWE-200
Status published
Products (2)
google/android 6.0
google/android 6.0.1
Published Apr 08, 2020
Tracked Since Feb 18, 2026