Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

dimanche 16 décembre 2018

Samsung Galaxy S6 bcmdhd4358 Wi-Fi Driver dhd_pcie.c dhd_bus_flow_ring_flush_response memory corruption

A vulnerability has been found in Samsung Galaxy S6 (the affected version is unknown) and classified as critical. This vulnerability affects the function dhd_bus_flow_ring_flush_response of the file drivers/net/wireless/bcmdhd4358/dhd_pcie.c of the component bcmdhd4358 Wi-Fi Driver. The manipulation with an unknown input leads to a memory corruption vulnerability (Code Execution). The CWE definition for the vulnerability is CWE-119. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:

Buffer overflow in dhd_bus_flow_ring_flush_response in drivers/net/wireless/bcmdhd4358/dhd_pcie.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 allow an attacker (who has obtained code execution on the Wi-Fi chip) to cause the device driver to perform invalid memory accesses. The Samsung ID is SVE-2018-11785.

The weakness was published 12/17/2018. This vulnerability was named CVE-2018-14855 since 08/02/2018. There are known technical details, but no exploit is available. The current price for an exploit might be approx. USD $0-$5k (estimation calculated on 12/18/2018).

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Similar entries are available at 128017, 128018, 128019 and 128021.

CPE

CVSSv3

VulDB Meta Base Score: 5.5
VulDB Meta Temp Score: 5.5

VulDB Base Score: ≈5.5
VulDB Temp Score: ≈5.5
VulDB Vector: 🔒
VulDB Reliability: 🔍

CVSSv2

VulDB Base Score: 🔒
VulDB Temp Score: 🔒
VulDB Reliability: 🔍

Exploiting

Class: Memory corruption / Code Execution (CWE-119)
Local: Yes
Remote: No

Availability: No

Price Prediction: 🔍
Current Price Estimation: 🔒

Threat Intelligence

Threat: 🔍
Adversaries: 🔍
Geopolitics: 🔍
Economy: 🔍
Predictions: 🔍
Actions: 🔍

Countermeasures

Recommended: no mitigation known
0-Day Time: 🔒

Timeline

08/02/2018 CVE assigned
12/17/2018 Advisory disclosed
12/18/2018 VulDB entry created
12/18/2018 VulDB last update

Sources

CVE: CVE-2018-14855 (🔒)
See also: 🔒

Entry

Created: 12/18/2018
Complete: 🔍

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 197

x

Événements SSI