Primary

Context

Samsung Mobile Out-of-Bounds Read and Write Vulnerability in mPOS TUI Trustlet

Vulnerability

A high-severity out-of-bounds read and write vulnerability has been identified in the mPOS TUI trustlet, affecting Android versions 12, 13, and 14 on devices with Qualcomm chipsets. This vulnerability allows local privileged attackers to read and write memory outside of the intended bounds, potentially leading to memory corruption.

Impact

Exploitation of this vulnerability could allow local privileged attackers to cause memory corruption by reading from and writing to out-of-bounds memory areas.

Remediation

Samsung Mobile has released a patch for this vulnerability as part of the February 2025 Security Maintenance Release. Users can update their devices to this version to address the issue.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

2.8

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

2.8

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Mobile Out-of-Bounds Read and Write Vulnerability in mPOS TUI Trustlet

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating