CVE-2020-8899

by Fred · 06/05/2020

There is a buffer overwrite vulnerability in the Quram qmg library of Samsung’s Android OS versions O(8.x), P(9.0) and Q(10.0). An unauthenticated, unauthorized attacker sending a specially crafted MMS to a vulnerable phone can trigger a heap-based buffer overflow in the Quram image codec leading to an arbitrary remote code execution (RCE) without any user interaction. The Samsung ID is SVE-2020-16747.

Date published : 2020-05-06

https://www.kb.cert.org/vuls/id/366027

https://bugs.chromium.org/p/project-zero/issues/detail?id=2002

CVE-2020-8899

Similar

Recent Posts

Categories

CVE-2020-8899

Share this:

Similar

Recent Posts

Categories

Tags