CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-5210

On Samsung mobile devices with N(7.x) software and Exynos chipsets, attackers can conduct a Trustlet stack overflow attack for arbitrary TEE code execution, in conjunction with a brute-force attack to discover unlock information (PIN, password, or pattern). The Samsung ID is SVE-2017-10733.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.7%

CVSS Severity

CVSS v3 Score 8.1

CVSS v2 Score 9.3

References

https://security.samsungmobile.com/securityUpdate.smsb
https://security.samsungmobile.com/securityUpdate.smsb

Products affected by CVE-2018-5210

Samsung » Samsung Mobile » Version: 7.0

cpe:2.3:o:samsung:samsung_mobile:7.0
Samsung » Samsung Mobile » Version: 7.1

cpe:2.3:o:samsung:samsung_mobile:7.1
Samsung » Samsung Mobile » Version: 7.1.1

cpe:2.3:o:samsung:samsung_mobile:7.1.1
Samsung » Samsung Mobile » Version: 7.1.2

cpe:2.3:o:samsung:samsung_mobile:7.1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-5210

Products

Pricing

Contact Us