← back
CVE-2021-25372

CVE-2021-25372

CVSS 6.1 MEDIUMEPSS 0.9%● KEVCWE-703
In short

The DSP driver fails to properly check memory boundaries, allowing an attacker to access data outside the intended memory area. This can lead to information disclosure or system instability.

Technical detail

An improper boundary check vulnerability in the DSP driver permits out-of-bounds memory access. An attacker with local access to the DSP driver interface can bypass boundary validation to read or write memory outside allocated regions, potentially leading to information disclosure or denial of service.

Summary generated and translated by AI from the official description.
An improper boundary check in DSP driver prior to SMR Mar-2021 Release 1 allows out of bounds memory access.
CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected products
Samsung Mobile · Samsung Mobile Devices

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://security.samsungmobile.comhttps://security.samsungmobile.com/securityUpdate.smsbhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-25372