CVE-2018-21070

An issue was discovered on Samsung mobile devices with N(7.x), O(8.0) devices (MSM8998 or SDM845 chipsets) software. An attacker can bypass Secure Boot and obtain root access because of a missing Bootloader integrity check. The Samsung ID is SVE-2018-11552 (May 2018).
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:7.1.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:7.1.2:*:*:*:*:*:*:*
cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*
OR cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:02

Type Values Removed Values Added
References () https://security.samsungmobile.com/securityUpdate.smsbĀ - Vendor Advisory () https://security.samsungmobile.com/securityUpdate.smsbĀ - Vendor Advisory

Information

Published : 2020-04-08 18:15

Updated : 2024-11-21 04:02


NVD link : CVE-2018-21070

Mitre link : CVE-2018-21070

CVE.ORG link : CVE-2018-21070


JSON object : View

Products Affected

google

  • android

qualcomm

  • sdm845
  • msm8998
CWE
CWE-354

Improper Validation of Integrity Check Value