// For flags

CVE-2023-21492

Samsung Mobile Devices Insertion of Sensitive Information Into Log File Vulnerability

Severity Score

4.4
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

Yes
*KEV

Decision

-
*SSVC
Descriptions

Kernel pointers are printed in the log file prior to SMR May-2023 Release 1 allows a privileged local attacker to bypass ASLR.

Samsung mobile devices running Android 11, 12, and 13 contain an insertion of sensitive information into log file vulnerability that allows a privileged, local attacker to conduct an address space layout randomization (ASLR) bypass.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2022-11-14 CVE Reserved
  • 2023-05-04 CVE Published
  • 2023-05-19 Exploited in Wild
  • 2023-06-09 KEV Due Date
  • 2024-08-02 CVE Updated
  • 2024-10-01 EPSS Updated
  • ---------- First Exploit
CWE
  • CWE-532: Insertion of Sensitive Information into Log File
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
-
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-apr-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-apr-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-aug-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-aug-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-dec-2020-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-dec-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-dec-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-feb-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-feb-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-feb-2023-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-jan-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-jan-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-jul-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-jul-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-jun-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-jun-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-mar-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-mar-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-may-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-may-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-nov-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-nov-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-oct-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-oct-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-sep-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
11.0
Search vendor "Samsung" for product "Android" and version "11.0"
smr-sep-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
-
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-apr-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-aug-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-dec-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-dec-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-feb-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-feb-2023-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-jan-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-jul-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-jun-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-mar-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-may-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-nov-2021-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-nov-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-oct-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
12.0
Search vendor "Samsung" for product "Android" and version "12.0"
smr-sep-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
13.0
Search vendor "Samsung" for product "Android" and version "13.0"
-
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
13.0
Search vendor "Samsung" for product "Android" and version "13.0"
smr-apr-2023-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
13.0
Search vendor "Samsung" for product "Android" and version "13.0"
smr-dec-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
13.0
Search vendor "Samsung" for product "Android" and version "13.0"
smr-feb-2023-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
13.0
Search vendor "Samsung" for product "Android" and version "13.0"
smr-jan-2023-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
13.0
Search vendor "Samsung" for product "Android" and version "13.0"
smr-mar-2023-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
13.0
Search vendor "Samsung" for product "Android" and version "13.0"
smr-nov-2022-r1
Affected
Samsung
Search vendor "Samsung"
Android
Search vendor "Samsung" for product "Android"
13.0
Search vendor "Samsung" for product "Android" and version "13.0"
smr-oct-2022-r1
Affected