CVE-2021-25372 — Samsung Mobile Devices Improper Boundary Check Vulnerability
2023-06-29 • CISA Known Exploited Vulnerability
[event] Samsung mobile devices contain an improper boundary check vulnerability within DSP driver that allows for out-of-bounds memory access.
> AFFECTED SOFTWARE
| Field | Value |
|---|---|
| Vendor | Samsung |
| Product | Mobile Devices |
| CWE | CWE-787 |
| CVE ID | CVE-2021-25372 |
| Date Added | 2023-06-29 |
| Due Date | 2023-07-20 |
| Ransomware Campaign | Unknown |
> MITIGATION
Apply updates per vendor instructions or discontinue use of the product if updates are unavailable
Due Date: 2023-07-20