Primary

Context

Samsung Blockchain Keystore Out-of-Bounds Write Vulnerability

Vulnerability

Patched

A high-severity out-of-bounds write vulnerability has been identified in the Blockchain Keystore application, prior to version 1.3.17.2. This vulnerability allows local privileged attackers to write to out-of-bounds memory by exploiting the detaching crypto box feature. The issue arises from inadequate input validation, which has been addressed in the latest version.

Impact

Exploitation of this vulnerability could lead to memory corruption by allowing unauthorized memory writes, potentially causing application crashes or arbitrary code execution.

Remediation

Users can update to Blockchain Keystore version 1.3.17.2 to address this vulnerability.

Added: Aug 6, 2025, 5:44 AM

Updated: Aug 6, 2025, 5:44 AM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

2.8

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

2.8

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Blockchain Keystore Out-of-Bounds Write Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Samsung Blockchain Keystore

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating