CVE-2021-25370

Summary

An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release 1 results in memory corruption leading to kernel panic.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Mobile DevicesSelected O(8.X), P(9.0), Q(10.0), R(11.0) < SMR Mar-2021 Release 1affected

Weaknesses

  • CVE-703: Improper Check or Handling of Exceptional Conditions

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References