An issue was discovered on Samsung mobile devices with software through 2015-11-12, affecting the Galaxy S6/S6 Edge, Galaxy S6 Edge+, and Galaxy Note5 with the Shannon333 chipset. There is a stack-based buffer overflow in the baseband process that is exploitable for remote code execution via a fake base station. The Samsung ID is SVE-2015-5123 (December 2015).
References
Link | Resource |
---|---|
https://security.samsungmobile.com/securityUpdate.smsb | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2020-04-10 12:15
Updated : 2020-04-13 06:04
NVD link : CVE-2015-8546
Mitre link : CVE-2015-8546
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
- android
samsung
- galaxy_s6_edge\+
- galaxy_s6_edge
- galaxy_s6
- galaxy_note5