CVE-2018-21070

An issue was discovered on Samsung mobile devices with N(7.x), O(8.0) devices (MSM8998 or SDM845 chipsets) software. An attacker can bypass Secure Boot and obtain root access because of a missing Bootloader integrity check. The Samsung ID is SVE-2018-11552 (May 2018).
References
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:7.1.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:7.1.2:*:*:*:*:*:*:*
cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*
OR cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-04-08 18:15

Updated : 2024-02-28 17:47


NVD link : CVE-2018-21070

Mitre link : CVE-2018-21070

CVE.ORG link : CVE-2018-21070


JSON object : View

Products Affected

qualcomm

  • msm8998
  • sdm845

google

  • android
CWE
CWE-354

Improper Validation of Integrity Check Value