cbcvebase.
CVE-2016-4030
published 2017-04-13

CVE-2016-4030: Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3), GT-I9192 build I9192XXUBNB1 (Galaxy S4 mini), GT-I9195 build…

medium6.8CVSS 3.0
AVPACLPRNUINSUCHIHAH
Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3), GT-I9192 build I9192XXUBNB1 (Galaxy S4 mini), GT-I9195 build I9195XXUCOL1 (Galaxy S4 mini LTE), and GT-I9505 build I9505XXUHOJ2 (Galaxy S4) devices have unintended availability of the modem in USB configuration number 2 within the secure lockscreen state, allowing an attacker to make phone calls, send text messages, or issue commands, aka SVE-2016-5301.

Affected

5 ranges
VendorProductVersion rangeFixed in
samsunggalaxy_note_3_firmware
samsunggalaxy_s4_firmware
samsunggalaxy_s4_mini_firmware
samsunggalaxy_s4_mini_lte_firmware
samsunggalaxy_s6_firmware