An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos chipsets) software. They allow attackers to conduct RPMB state-change attacks because an unauthorized RPMB write operation can be replayed, a related issue to CVE-2020-13799. The Samsung ID is SVE-2020-18100 (December 2020).
References
Link | Resource |
---|---|
https://security.samsungmobile.com/securityUpdate.smsb | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2020-12-18 09:15
Updated : 2024-02-04 21:23
NVD link : CVE-2020-35551
Mitre link : CVE-2020-35551
CVE.ORG link : CVE-2020-35551
JSON object : View
Products Affected
- android
CWE
CWE-294
Authentication Bypass by Capture-replay