๐Ÿ” CVE Alert

CVE-2023-21492

MEDIUM 4.4 โš ๏ธ CISA KEV
CVSS Score
4.4
EPSS Score
0.0%
EPSS Percentile
0th

Kernel pointers are printed in the log file prior to SMR May-2023 Release 1 allows a privileged local attacker to bypass ASLR.

CWE CWE-532
Vendor samsung mobile
Product samsung mobile devices
Published May 4, 2023
Last Updated Oct 21, 2025
โš ๏ธ Actively Exploited โ€” Act Now

Get instant alerts for samsung mobile samsung mobile devices

This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2023-21492.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Affected Versions

Samsung Mobile / Samsung Mobile Devices
Selected Android 11, 12, 13 devices < SMR May-2023 Release 1

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
security.samsungmobile.com: https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05 cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-21492