What is CVE-2017-18694?

CVE-2017-18694 is a vulnerability on Samsung mobile devices with software through 2016-10-25 (Exynos5 chipsets) that allows attackers to read kernel addresses in the log due to an incorrect format specifier.

How severe is CVE-2017-18694?

CVE-2017-18694 has a severity score of 5.3, which is considered medium.

How can I check if I am affected by CVE-2017-18694?

If you are using a Samsung mobile device with software through 2016-10-25 and Exynos5 chipsets, you may be affected by CVE-2017-18694.

What is the official reference for CVE-2017-18694?

The official reference for CVE-2017-18694 is https://security.samsungmobile.com/securityUpdate.smsb.

How do I fix CVE-2017-18694?

To fix CVE-2017-18694, update your Samsung mobile device software to a version released after 2016-10-25.

Vulnerability/
CVE-2017-18694

medium

5.3

CWE

200

7/4/2020

5/8/2024

CVE-2017-18694: Infoleak

First published: Tue Apr 07 2020(Updated: )

An issue was discovered on Samsung mobile devices with software through 2016-10-25 (Exynos5 chipsets). Attackers can read kernel addresses in the log because an incorrect format specifier is used. The Samsung ID is SVE-2016-7551 (January 2017).

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Google Android
Samsung Exynos 5250
Samsung Exynos 5260
Samsung Exynos 5410
Samsung Exynos 5420
Samsung Exynos 5422
Samsung Exynos 5430
Samsung Exynos 5800

Never miss a vulnerability like this again

Reference Links

https://security.samsungmobile.com/securityUpdate.smsb

Frequently Asked Questions

What is CVE-2017-18694?
CVE-2017-18694 is a vulnerability on Samsung mobile devices with software through 2016-10-25 (Exynos5 chipsets) that allows attackers to read kernel addresses in the log due to an incorrect format specifier.
How severe is CVE-2017-18694?
CVE-2017-18694 has a severity score of 5.3, which is considered medium.
How can I check if I am affected by CVE-2017-18694?
If you are using a Samsung mobile device with software through 2016-10-25 and Exynos5 chipsets, you may be affected by CVE-2017-18694.
What is the official reference for CVE-2017-18694?
The official reference for CVE-2017-18694 is https://security.samsungmobile.com/securityUpdate.smsb.
How do I fix CVE-2017-18694?
To fix CVE-2017-18694, update your Samsung mobile device software to a version released after 2016-10-25.

agent/severity
agent/references
agent/weakness
agent/author
agent/type
agent/description
agent/event
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/mitre-cve
source/MITRE
vendor/google
canonical/google android
vendor/samsung
canonical/samsung exynos 5250
canonical/samsung exynos 5260
canonical/samsung exynos 5410
canonical/samsung exynos 5420
canonical/samsung exynos 5422
canonical/samsung exynos 5430
canonical/samsung exynos 5800

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.