An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Improper synchronization on a global variable leads to a use-after-free. An attacker can trigger a race condition by invoking an ioctl function concurrently from multiple threads.
Attack Parameters
Attack Vector
Local
Requires local access
Attack Complexity
High
Difficult to exploit
Privileges Required
Low
Basic privileges needed
User Interaction
None
No user interaction needed
Impact Assessment
Confidentiality
High
Complete data leak
Integrity
High
Complete data modification
Availability
High
Complete denial of service
CVSS Vector v3.1
Weakness Type (CWE)
Vulnerable Products 22
| Configuration | From (including) | Up to (excluding) |
|---|---|---|
|
Samsung Exynos_980_Firmware
cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_980
cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_850_Firmware
cpe:2.3:o:samsung:exynos_850_firmware:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_850
cpe:2.3:h:samsung:exynos_850:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1080_Firmware
cpe:2.3:o:samsung:exynos_1080_firmware:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1080
cpe:2.3:h:samsung:exynos_1080:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1280_Firmware
cpe:2.3:o:samsung:exynos_1280_firmware:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1280
cpe:2.3:h:samsung:exynos_1280:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1330_Firmware
cpe:2.3:o:samsung:exynos_1330_firmware:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1330
cpe:2.3:h:samsung:exynos_1330:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1380_Firmware
cpe:2.3:o:samsung:exynos_1380_firmware:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1380
cpe:2.3:h:samsung:exynos_1380:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1480_Firmware
cpe:2.3:o:samsung:exynos_1480_firmware:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1480
cpe:2.3:h:samsung:exynos_1480:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1580_Firmware
cpe:2.3:o:samsung:exynos_1580_firmware:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_1580
cpe:2.3:h:samsung:exynos_1580:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_W1000_Firmware
cpe:2.3:o:samsung:exynos_w1000_firmware:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_W1000
cpe:2.3:h:samsung:exynos_w1000:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_W920_Firmware
cpe:2.3:o:samsung:exynos_w920_firmware:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_W920
cpe:2.3:h:samsung:exynos_w920:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_W930_Firmware
cpe:2.3:o:samsung:exynos_w930_firmware:-:*:*:*:*:*:*:*
|
— | — |
|
Samsung Exynos_W930
cpe:2.3:h:samsung:exynos_w930:-:*:*:*:*:*:*:*
|
— | — |