CVE-2020-28343
First published: Sun Nov 08 2020(Updated: )
An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) (Exynos 980, 9820, and 9830 chipsets) software. The NPU driver allows attackers to execute arbitrary code because of unintended write and read operations on memory. The Samsung ID is SVE-2020-18610 (November 2020).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Android | =9.0 | |
| Google Android | =10.0 | |
| Samsung Exynos 980 | ||
| Samsung Exynos 9820 firmware | ||
| Samsung Exynos 9830 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-28343?
CVE-2020-28343 is an issue discovered on Samsung mobile devices with P(9.0) and Q(10.0) software, specifically on Exynos 980, 9820, and 9830 chipsets.
What is the severity of CVE-2020-28343?
The severity of CVE-2020-28343 is rated as high with a severity value of 7.8.
How does CVE-2020-28343 affect Samsung mobile devices?
CVE-2020-28343 allows attackers to execute arbitrary code on Samsung mobile devices with the affected software and chipsets.
How can I fix CVE-2020-28343?
To fix CVE-2020-28343, it is recommended to install the security update provided by Samsung. Please refer to the official Samsung security update website for more information.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/google
- canonical/google android
- version/google android/9.0
- version/google android/10.0
- vendor/samsung
- canonical/samsung exynos 980
- canonical/samsung exynos 9820 firmware
- canonical/samsung exynos 9830