Details of VAR-201809-0085

ID

VAR-201809-0085

CVE

CVE-2018-10501

TITLE

Samsung Notes Path Traversal Vulnerability

Trust: 1.2

sources: CNVD: CNVD-2018-20054 // CNNVD: CNNVD-201808-942

DESCRIPTION

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Samsung Notes Fixed in version 2.0.02.31. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of ZIP files. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from the application. Was ZDI-CAN-5358. Samsung Notes Contains vulnerabilities related to authorization, permissions, and access control. Zero Day Initiative Is vulnerable to this vulnerability ZDI-CAN-5358 Was numbered.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. SamsungNotes is a Notes series of smartphone products from South Korea's Samsung

Trust: 2.79

sources: NVD: CVE-2018-10501 // JVNDB: JVNDB-2018-011827 // ZDI: ZDI-18-561 // CNVD: CNVD-2018-20054

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2018-20054

AFFECTED PRODUCTS

vendor:	samsung	model:	notes	scope:	lt	version:	2.0.02.31	Trust: 1.8
vendor:	samsung	model:	notes	scope:	-	version:	-	Trust: 1.3

sources: ZDI: ZDI-18-561 // CNVD: CNVD-2018-20054 // JVNDB: JVNDB-2018-011827 // NVD: CVE-2018-10501

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-10501
value:	HIGH
Trust: 1.0
NVD:	CVE-2018-10501
value:	HIGH
Trust: 0.8
ZDI:	CVE-2018-10501
value:	MEDIUM
Trust: 0.7
CNVD:	CNVD-2018-20054
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201808-942
value:	HIGH
Trust: 0.6

nvd@nist.gov:	CVE-2018-10501
severity:	MEDIUM
baseScore:	4.4
vectorString:	AV:L/AC:M/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.4
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 2.5
CNVD:	CNVD-2018-20054
severity:	MEDIUM
baseScore:	4.4
vectorString:	AV:L/AC:M/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.4
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2018-10501
baseSeverity:	HIGH
baseScore:	7.0
vectorString:	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	HIGH
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.0
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: ZDI: ZDI-18-561 // CNVD: CNVD-2018-20054 // JVNDB: JVNDB-2018-011827 // CNNVD: CNNVD-201808-942 // NVD: CVE-2018-10501

PROBLEMTYPE DATA

problemtype:	CWE-22	Trust: 1.0
problemtype:	CWE-264	Trust: 0.8

sources: JVNDB: JVNDB-2018-011827 // NVD: CVE-2018-10501

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201808-942

TYPE

path traversal

Trust: 0.6

sources: CNNVD: CNNVD-201808-942

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-011827

PATCH

title:	Samsung Notes	url:	https://www.samsung.com/global/galaxy/apps/samsung-notes/	Trust: 0.8
title:	SamsungNotes Path Traversal Vulnerability Patch	url:	https://www.cnvd.org.cn/patchInfo/show/141287	Trust: 0.6
title:	Samsung Notes Repair measures for path traversal vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=84365	Trust: 0.6

sources: CNVD: CNVD-2018-20054 // JVNDB: JVNDB-2018-011827 // CNNVD: CNNVD-201808-942

EXTERNAL IDS

db:	NVD	id:	CVE-2018-10501	Trust: 3.7
db:	ZDI	id:	ZDI-18-561	Trust: 3.7
db:	JVNDB	id:	JVNDB-2018-011827	Trust: 0.8
db:	ZDI_CAN	id:	ZDI-CAN-5358	Trust: 0.7
db:	CNVD	id:	CNVD-2018-20054	Trust: 0.6
db:	CNNVD	id:	CNNVD-201808-942	Trust: 0.6

sources: ZDI: ZDI-18-561 // CNVD: CNVD-2018-20054 // JVNDB: JVNDB-2018-011827 // CNNVD: CNNVD-201808-942 // NVD: CVE-2018-10501

REFERENCES

url:	https://zerodayinitiative.com/advisories/zdi-18-561	Trust: 2.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-10501	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2018-10501	Trust: 0.8
url:	https://www.zerodayinitiative.com/advisories/zdi-18-561/	Trust: 0.6

sources: CNVD: CNVD-2018-20054 // JVNDB: JVNDB-2018-011827 // CNNVD: CNNVD-201808-942 // NVD: CVE-2018-10501

CREDITS

MWR Labs - Alex Plaskett James Loureiro Robert Miller and Georgi Geshev

Trust: 1.3

sources: ZDI: ZDI-18-561 // CNNVD: CNNVD-201808-942

SOURCES

db:	ZDI	id:	ZDI-18-561
db:	CNVD	id:	CNVD-2018-20054
db:	JVNDB	id:	JVNDB-2018-011827
db:	CNNVD	id:	CNNVD-201808-942
db:	NVD	id:	CVE-2018-10501

LAST UPDATE DATE

2024-11-23T22:48:35.158000+00:00

SOURCES UPDATE DATE

db:	ZDI	id:	ZDI-18-561	date:	2018-06-07T00:00:00
db:	CNVD	id:	CNVD-2018-20054	date:	2018-09-28T00:00:00
db:	JVNDB	id:	JVNDB-2018-011827	date:	2019-01-23T00:00:00
db:	CNNVD	id:	CNNVD-201808-942	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2018-10501	date:	2024-11-21T03:41:26.930

SOURCES RELEASE DATE

db:	ZDI	id:	ZDI-18-561	date:	2018-06-07T00:00:00
db:	CNVD	id:	CNVD-2018-20054	date:	2018-09-28T00:00:00
db:	JVNDB	id:	JVNDB-2018-011827	date:	2019-01-23T00:00:00
db:	CNNVD	id:	CNNVD-201808-942	date:	2018-08-30T00:00:00
db:	NVD	id:	CVE-2018-10501	date:	2018-09-24T23:29:00.943