Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2015-7896

CWE-119Buffer Overflow5 documents5 sources
Severity
6.5MEDIUM
EPSS
9.1%
top 7.33%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Samsung Samsung Mobile
Timeline
PublishedAug 24
Latest updateMay 17

Description

LibQJpeg in the Samsung Galaxy S6 before the October 2015 MR allows remote attackers to cause a denial of service (memory corruption and SIGSEGV) via a crafted image file.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

NVDsamsung/samsung_mobile11 versions+10

🔴Vulnerability Details

3
GHSA
GHSA-j5r6-r9wj-mgmg: LibQJpeg in the Samsung Galaxy S6 before the October 2015 MR allows remote attackers to cause a denial of service (memory corruption and SIGSEGV) via2022-05-17
CVEList
CVE-2015-7896: LibQJpeg in the Samsung Galaxy S6 before the October 2015 MR allows remote attackers to cause a denial of service (memory corruption and SIGSEGV) via2017-08-24
Project0
Hack The Galaxy: Hunting Bugs in the Samsung Galaxy S6 Edge - Project Zero2015-11-01

💥Exploits & PoCs

1
Exploit-DB
Samsung Galaxy S6 - libQjpeg DoIntegralUpsample Crash2015-11-03
CVE-2015-7896 (MEDIUM CVSS 6.5) | LibQJpeg in the Samsung Galaxy S6 b | cvebase.io