Vulnerability Description
Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3), GT-I9192 build I9192XXUBNB1 (Galaxy S4 mini), GT-I9195 build I9195XXUCOL1 (Galaxy S4 mini LTE), and GT-I9505 build I9505XXUHOJ2 (Galaxy S4) devices allow attackers to send AT commands by plugging the device into a Linux host, aka SVE-2016-5301.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Samsung | Galaxy S6 Firmware | g920fxxu2coh2 |
| Samsung | Galaxy S6 | - |
| Samsung | Galaxy Note 3 Firmware | n9005xxugbob6 |
| Samsung | Galaxy Note 3 | - |
| Samsung | Galaxy S4 Mini Firmware | i9192xxubnb1 |
| Samsung | Galaxy S4 Mini | - |
| Samsung | Galaxy S4 Mini Lte Firmware | i9195xxucol1 |
| Samsung | Galaxy S4 Mini Lte | - |
| Samsung | Galaxy S4 Firmware | i9505xxuhoj2 |
| Samsung | Galaxy S4 | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/97703Third Party AdvisoryVDB Entry
- https://github.com/ud2/advisories/tree/master/android/samsung/nocve-2016-0004ExploitTechnical DescriptionThird Party Advisory
- http://www.securityfocus.com/bid/97703Third Party AdvisoryVDB Entry
- https://github.com/ud2/advisories/tree/master/android/samsung/nocve-2016-0004ExploitTechnical DescriptionThird Party Advisory
FAQ
What is CVE-2016-4031?
CVE-2016-4031 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3), GT-I9192 build I9192XXUBNB1 (Galaxy S4 mini), GT-I9195 build I9195XXUCOL1 (Galaxy S4 mini LTE), and GT-I...
How severe is CVE-2016-4031?
CVE-2016-4031 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-4031?
Check the references section above for vendor advisories and patch information. Affected products include: Samsung Galaxy S6 Firmware, Samsung Galaxy S6, Samsung Galaxy Note 3 Firmware, Samsung Galaxy Note 3, Samsung Galaxy S4 Mini Firmware.