1. Home
  2. CVE Database
  3. CVE-2016-11050
MEDIUM · 4.3

CVE-2016-11050

An issue was discovered on Samsung mobile devices with S3(KK), Note2(KK), S4(L), Note3(L), and S5(L) software. An attacker can rewrite the IMEI by flashing crafted firmware. The Samsung ID is SVE-2016...

Vulnerability Description

An issue was discovered on Samsung mobile devices with S3(KK), Note2(KK), S4(L), Note3(L), and S5(L) software. An attacker can rewrite the IMEI by flashing crafted firmware. The Samsung ID is SVE-2016-5562 (March 2016).

CVSS Score

4.3

MEDIUM

CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
HIGH
Availability
NONE

Affected Products

VendorProductVersions
SamsungS5 Firmware-
SamsungS5-
SamsungNote3 Firmware-
SamsungNote3-
SamsungS4 Firmware-
SamsungS4-
SamsungNote2 Firmware-
SamsungNote2-
SamsungS3 Firmware-
SamsungS3-

References

FAQ

What is CVE-2016-11050?

CVE-2016-11050 is a vulnerability with a CVSS score of 4.3 (MEDIUM). An issue was discovered on Samsung mobile devices with S3(KK), Note2(KK), S4(L), Note3(L), and S5(L) software. An attacker can rewrite the IMEI by flashing crafted firmware. The Samsung ID is SVE-2016...

How severe is CVE-2016-11050?

CVE-2016-11050 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-11050?

Check the references section above for vendor advisories and patch information. Affected products include: Samsung S5 Firmware, Samsung S5, Samsung Note3 Firmware, Samsung Note3, Samsung S4 Firmware.