CVE-2018-21052: Buffer Overflow
First published: Wed Apr 08 2020(Updated: )
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.X) (Exynos chipsets) software. There is incorrect usage of shared memory in the vaultkeeper Trustlet, leading to arbitrary code execution. The Samsung ID is SVE-2018-12855 (October 2018).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Android | =7.0 | |
| Android | =7.1.0 | |
| Android | =7.1.1 | |
| Android | =7.1.2 | |
| Android | =8.0 | |
| Android | =8.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-21052?
CVE-2018-21052 is considered a high severity vulnerability due to the potential for arbitrary code execution.
How do I fix CVE-2018-21052?
To fix CVE-2018-21052, ensure that your Samsung mobile device has the latest software updates installed.
Which devices are affected by CVE-2018-21052?
CVE-2018-21052 affects Samsung mobile devices with the Android N (7.x) or O (8.x) operating systems on Exynos chipsets.
What type of vulnerability is CVE-2018-21052?
CVE-2018-21052 is a memory safety vulnerability leading to potential arbitrary code execution.
When was CVE-2018-21052 disclosed?
CVE-2018-21052 was disclosed in October 2018.
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/google
- canonical/android
- version/android/7.0
- version/android/7.1.0
- version/android/7.1.1
- version/android/7.1.2
- version/android/8.0
- version/android/8.1