Sign-up

ID

VAR-201809-0898


CVE

CVE-2018-14318


TITLE

Samsung Galaxy S8 Input validation vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-011134

DESCRIPTION

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung Galaxy S8 G950FXXU1AQL5. User interaction is required to exploit this vulnerability in that the target must have their cellular radios enabled. The specific flaw exists within the handling of IPCP headers. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length, stack-based buffer. An attacker can leverage this vulnerability to execute code under the context of the baseband processor. Was ZDI-CAN-5368. Zero Day Initiative Is vulnerable to this vulnerability ZDI-CAN-5368 Was numbered.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. SamsungGalaxyS8 is a smartphone released by South Korea's Samsung

Trust: 2.88

sources: NVD: CVE-2018-14318 // JVNDB: JVNDB-2018-011134 // ZDI: ZDI-18-1077 // CNVD: CNVD-2018-20100 // VULHUB: VHN-124465

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2018-20100

AFFECTED PRODUCTS

vendor:samsungmodel:galaxy s8scope:eqversion:g950fxxu1aql5

Trust: 2.4

vendor:samsungmodel:galaxy s8scope: - version: -

Trust: 1.3

sources: ZDI: ZDI-18-1077 // CNVD: CNVD-2018-20100 // JVNDB: JVNDB-2018-011134 // CNNVD: CNNVD-201809-1005 // NVD: CVE-2018-14318

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-14318
value: HIGH

Trust: 1.0

NVD: CVE-2018-14318
value: HIGH

Trust: 0.8

ZDI: CVE-2018-14318
value: MEDIUM

Trust: 0.7

CNVD: CNVD-2018-20100
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201809-1005
value: HIGH

Trust: 0.6

VULHUB: VHN-124465
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2018-14318
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 2.5

CNVD: CNVD-2018-20100
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-124465
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-14318
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: ZDI: ZDI-18-1077 // CNVD: CNVD-2018-20100 // VULHUB: VHN-124465 // JVNDB: JVNDB-2018-011134 // CNNVD: CNNVD-201809-1005 // NVD: CVE-2018-14318

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.9

problemtype:CWE-121

Trust: 1.0

sources: VULHUB: VHN-124465 // JVNDB: JVNDB-2018-011134 // NVD: CVE-2018-14318

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201809-1005

TYPE

input validation error

Trust: 0.6

sources: CNNVD: CNNVD-201809-1005

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-011134

PATCH
title:Galaxy S8 | S8+url:https://www.samsung.com/global/galaxy/galaxy-s8/
Trust: 0.8
title:SamsungGalaxyS8 patch for arbitrary code execution vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/141233
Trust: 0.6
title:Samsung Galaxy S8 Buffer error vulnerability fixurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=85109
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2018-20100 // 
            
            
            
            JVNDB: JVNDB-2018-011134 // 
            
            
            
            CNNVD: CNNVD-201809-1005

EXTERNAL IDS
db:NVDid:CVE-2018-14318
Trust: 3.8
db:ZDIid:ZDI-18-1077
Trust: 3.2
db:JVNDBid:JVNDB-2018-011134
Trust: 0.8
db:ZDI_CANid:ZDI-CAN-5368
Trust: 0.7
db:CNNVDid:CNNVD-201809-1005
Trust: 0.7
db:CNVDid:CNVD-2018-20100
Trust: 0.6
db:VULHUBid:VHN-124465
Trust: 0.1
sources:
            
            
            ZDI: ZDI-18-1077 // 
            
            
            
            CNVD: CNVD-2018-20100 // 
            
            
            
            VULHUB: VHN-124465 // 
            
            
            
            JVNDB: JVNDB-2018-011134 // 
            
            
            
            CNNVD: CNNVD-201809-1005 // 
            
            
            
            NVD: CVE-2018-14318

REFERENCES
url:https://zerodayinitiative.com/advisories/zdi-18-1077
Trust: 2.5
url:https://nvd.nist.gov/vuln/detail/cve-2018-14318
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-14318
Trust: 0.8
sources:
            
            
            CNVD: CNVD-2018-20100 // 
            
            
            
            VULHUB: VHN-124465 // 
            
            
            
            JVNDB: JVNDB-2018-011134 // 
            
            
            
            CNNVD: CNNVD-201809-1005 // 
            
            
            
            NVD: CVE-2018-14318

CREDITS
Acez
Trust: 0.7
sources:
            
            
            ZDI: ZDI-18-1077

SOURCES
db:ZDIid:ZDI-18-1077
db:CNVDid:CNVD-2018-20100
db:VULHUBid:VHN-124465
db:JVNDBid:JVNDB-2018-011134
db:CNNVDid:CNNVD-201809-1005
db:NVDid:CVE-2018-14318

LAST UPDATE DATE
2024-11-23T23:08:35.007000+00:00

SOURCES UPDATE DATE
db:ZDIid:ZDI-18-1077date:2018-09-25T00:00:00
db:CNVDid:CNVD-2018-20100date:2018-09-29T00:00:00
db:VULHUBid:VHN-124465date:2019-10-09T00:00:00
db:JVNDBid:JVNDB-2018-011134date:2019-01-07T00:00:00
db:CNNVDid:CNNVD-201809-1005date:2020-07-09T00:00:00
db:NVDid:CVE-2018-14318date:2024-11-21T03:48:48.787

SOURCES RELEASE DATE
db:ZDIid:ZDI-18-1077date:2018-09-21T00:00:00
db:CNVDid:CNVD-2018-20100date:2018-09-28T00:00:00
db:VULHUBid:VHN-124465date:2018-09-24T00:00:00
db:JVNDBid:JVNDB-2018-011134date:2019-01-07T00:00:00
db:CNNVDid:CNNVD-201809-1005date:2018-09-25T00:00:00
db:NVDid:CVE-2018-14318date:2018-09-24T23:29:01.337