← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-25487 — Actively Exploited: Mobile Devices (Samsung)

Samsung mobile devices contain an out-of-bounds read vulnerability within the modem interface driver due to a lack of boundary checking of a buffer in set_skb_priv(), leading to remote code execution by dereference of an invalid function pointer.

CVE IDCVE-2021-25487
VendorSamsung
ProductMobile Devices
Vulnerability nameSamsung Mobile Devices Out-of-Bounds Read Vulnerability
Date added2023-06-29
Remediation due2023-07-20
Known ransomware useUnknown
Required actionApply updates per vendor instructions or discontinue use of the product if updates are unavailable
DescriptionSamsung mobile devices contain an out-of-bounds read vulnerability within the modem interface driver due to a lack of boundary checking of a buffer in set_skb_priv(), leading to remote code execution by dereference of an invalid function pointer.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →