Primary

Context

Samsung Fingerprint Trustlet Out-of-Bounds Write Vulnerability Allowing Memory Corruption

Vulnerability

A high-severity out-of-bounds write vulnerability has been identified in the fingerprint trustlet, affecting Samsung devices running Android versions 13, 14, 15, and 16. This vulnerability allows local privileged attackers to write to out-of-bounds memory, potentially leading to memory corruption.

Impact

Exploitation of this vulnerability could allow local privileged attackers to cause memory corruption by writing out-of-bounds, which could be leveraged for arbitrary code execution or to create a denial-of-service condition.

Remediation

Users can apply the October 2025 Security Maintenance Release, which includes the patch for this vulnerability. This update is part of the regular monthly security update process and should be available for all applicable models.

Added: Oct 10, 2025, 7:31 AM

Updated: Oct 10, 2025, 7:31 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.8

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.8

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Fingerprint Trustlet Out-of-Bounds Write Vulnerability Allowing Memory Corruption

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating