CVE-2016-11028: Buffer Overflow
First published: Tue Apr 07 2020(Updated: )
An issue was discovered on Samsung mobile devices with software through 2016-09-13 (Exynos AP chipsets). There is a stack-based buffer overflow in the OTP TrustZone trustlet. The Samsung IDs are SVE-2016-7173 and SVE-2016-7174 (December 2016).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Android | ||
| Samsung Exynos |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID of this issue is CVE-2016-11028.
What is the severity of CVE-2016-11028?
The severity of CVE-2016-11028 is critical with a CVSS score of 9.8.
What is the affected software?
The affected software includes Google Android and Samsung Exynos.
Is the Samsung Exynos software vulnerable to CVE-2016-11028?
No, the Samsung Exynos software is not vulnerable to CVE-2016-11028.
How can I fix CVE-2016-11028?
To fix CVE-2016-11028, you should apply the security update provided by Samsung.
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/google
- canonical/google android
- vendor/samsung
- canonical/samsung exynos