CVE-2018-21042
First published: Wed Apr 08 2020(Updated: )
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) software. Dual Messenger allows installation of an arbitrary APK with resultant privileged code execution. The Samsung ID is SVE-2018-13299 (December 2018).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Android | =7.0 | |
| Android | =7.1.0 | |
| Android | =7.1.1 | |
| Android | =7.1.2 | |
| Android | =8.0 | |
| Android | =8.1 | |
| Android | =9.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-21042?
CVE-2018-21042 has a critical severity due to its potential for privileged code execution.
How do I fix CVE-2018-21042?
To mitigate CVE-2018-21042, update your Samsung device to the latest software version provided in security updates.
What devices are affected by CVE-2018-21042?
CVE-2018-21042 affects Samsung mobile devices running Android versions 7.x, 8.x, and 9.0.
What type of vulnerability is CVE-2018-21042?
CVE-2018-21042 is a code execution vulnerability related to the Dual Messenger feature on Samsung devices.
Can CVE-2018-21042 lead to data breaches?
Yes, CVE-2018-21042 can potentially lead to unauthorized access and data breaches through privileged code execution.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/google
- canonical/android
- version/android/7.0
- version/android/7.1.0
- version/android/7.1.1
- version/android/7.1.2
- version/android/8.0
- version/android/8.1
- version/android/9.0