Vulnerabilities > CVE-2020-25056 - Improper Check for Unusual or Exceptional Conditions vulnerability in Google Android 10.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

google

CWE-754

NVD

Published: 2020-08-31

Updated: 2020-09-03

Summary

An issue was discovered on Samsung mobile devices with Q(10.0) (Galaxy S20) software. Because HAL improperly checks versions, bootloading by the S.LSI NFC chipset is mishandled. The Samsung ID is SVE-2020-16169 (August 2020).

Vulnerable Configurations

Part	Description	Count
OS	Google Google Android 10.0	1
Hardware	Samsung Samsung Galaxy S20 -	1

Common Weakness Enumeration (CWE)

CWE-754 - Improper Check for Unusual or Exceptional Conditions

References

https://security.samsungmobile.com/securityUpdate.smsb