CVE-2021-25487CISA KEVEPSS p45.0%

CVE-2021-25487Samsung Mobile Devices Out-of-Bounds Read Vulnerability

Samsung / Mobile Devices

Description

Samsung mobile devices contain an out-of-bounds read vulnerability within the modem interface driver due to a lack of boundary checking of a buffer in set_skb_priv(), leading to remote code execution by dereference of an invalid function pointer.

Scoring

EPSS0.62% probability of exploitation · percentile 45.0% · 2026-06-19T12:03:05Z

CISA KEV entry

Added to KEV: 2023-06-29

(incoming)1

TypeTargetConfidenceTier
KEVEntrySamsung Mobile Devices Out-of-Bounds Read Vulnerabilitykev-cve-2021-254870%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Samsung Mobile Devices Improper Boundary Check Vulnerability
CVE
Samsung Mobile Devices Improper Input Validation Vulnerability
CVE
Samsung Mobile Devices Unspecified Vulnerability
CVE
Samsung Mobile Devices Out-of-Bounds Write Vulnerability
CVE
Samsung Mobile Devices Use-After-Free Vulnerability
CVE
Samsung Mobile Devices Improper Access Control Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.