Primary

Context

Samsung KnoxVault Trustlet Out-of-Bounds Write Vulnerability Allowing Memory Corruption

Vulnerability

A vulnerability exists in the KnoxVault trustlet, specifically in versions prior to the Samsung Security Maintenance Release (SMR) July 2025 Release 1. This vulnerability allows local privileged attackers to perform an out-of-bounds write when setting the authentication secret, leading to the potential corruption of memory.

Impact

Exploitation of this vulnerability allows for arbitrary memory write operations, which could be used to manipulate program execution or cause a crash.

Remediation

Users can apply the Samsung SMR July 2025 Release 1, which includes the patch for this vulnerability.

Added: Jul 8, 2025, 12:15 PM

Updated: Jul 8, 2025, 12:15 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.8

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.8

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung KnoxVault Trustlet Out-of-Bounds Write Vulnerability Allowing Memory Corruption

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating