CVE-2016-9965

CWE-3884 documents4 sources
Severity
9.8CRITICAL
EPSS
0.5%
top 34.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Samsung Samsung Mobile
Timeline
PublishedDec 16
Latest updateMay 17

Description

Lack of appropriate exception handling in some receivers of the Telecom application on Samsung Note devices with L(5.0/5.1), M(6.0), and N(7.0) software allows attackers to crash the system easily resulting in a possible DoS attack, or possibly gain privileges. The Samsung ID is SVE-2016-7119.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

NVDsamsung/samsung_mobile4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-g4f7-999c-8f35: Lack of appropriate exception handling in some receivers of the Telecom application on Samsung Note devices with L(52022-05-17
CVEList
CVE-2016-9965: Lack of appropriate exception handling in some receivers of the Telecom application on Samsung Note devices with L(52016-12-16

💥Exploits & PoCs

1
Exploit-DB
vTiger CRM 6.3.0 - (Authenticated) Remote Code Execution2015-09-28
CVE-2016-9965 (CRITICAL CVSS 9.8) | Lack of appropriate exception handl | cvebase.io