Multiple Samsung Galaxy Products CVE-2016-4031 Security Bypass Vulnerability

Multiple Samsung Galaxy products are prone to a security-bypass vulnerability.

An attacker may exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may lead to further attacks.

Samsung Galaxy S4 through S6 devices are vulnerable.

Information

Bugtraq ID: 97703
Class: Design Error
CVE: CVE-2016-4031

Remote: Yes
Local: No
Published: Apr 13 2017 12:00AM
Updated: Apr 13 2017 12:00AM
Credit: Roberto Paleari (@rpaleari) and Aristide Fattori (@joystick).
Vulnerable: Samsung Galaxy S6 SM-G920F build G920F
Samsung Galaxy S4 mini LTE GT-I9195 build I9195
Samsung Galaxy S4 Mini GT-I9192 build I9192
Samsung Galaxy S4 GT-I9505 build I9505
Samsung Galaxy Note 3 SM-N9005 build N9005
Google Android 0

Not Vulnerable:

References:

• Samsung Homepage (Samsung)
  
• Modem interface exposed via USB (Github)
  

Source: www.securityfocus.com