CVE-2024-20817

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Feb 6, 2024

Updated: Mar 12, 2024

CWE ID 787

Summary

CVE-2024-20817 is a newly disclosed vulnerability that affects the libsthmbc.so library prior to the SMR Feb-2024 Release 1. This issue involves out-of-bounds Write vulnerabilities in the svc1td_vld_slh function, which can be exploited by local attackers to trigger a buffer overflow. Successful exploitation may lead to arbitrary code execution or system crashes, resulting in potential security risks and denial-of-service conditions. It is recommended that users update their systems as soon as possible to mitigate these risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung Android

Affected Vendors

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uakz5L
https://www.cve.org/CVERecord?id=CVE-2024-20817
https://nvd.nist.gov/vuln/detail/CVE-2024-20817

Back to Vulnerability Database