CVE-2021-25394

Samsung | Mobile DevicesAdded 2023-06-29Remediation Deadline 2023-07-20

Samsung Mobile Devices Race Condition Vulnerability

Samsung mobile devices contain a race condition vulnerability within the MFC charger driver that leads to a use-after-free allowing for a write given a radio privilege is compromised.

Required Action

Apply updates per vendor instructions or discontinue use of the product if updates are unavailable

Weakness Classification

CWE-416

References

https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=5
https://nvd.nist.gov/vuln/detail/CVE-2021-25394

Cybersecurity Alerts

CVE-2021-25394

Samsung Mobile Devices Race Condition Vulnerability

Required Action

Weakness Classification

References