RSS   Vulnerabilities for 'Lpddr4'   RSS

2020-03-10
 
CVE-2020-10255

CWE-20
 

 
Modern DRAM chips (DDR4 and LPDDR4 after 2015) are affected by a vulnerability in deployment of internal mitigations against RowHammer attacks known as Target Row Refresh (TRR), aka the TRRespass issue. To exploit this vulnerability, the attacker needs to create certain access patterns to trigger bit flips on affected memory modules, aka a Many-sided RowHammer attack. This means that, even when chips advertised as RowHammer-free are used, attackers may still be able to conduct privilege-escalation attacks against the kernel, conduct privilege-escalation attacks against the Sudo binary, and achieve cross-tenant virtual-machine access by corrupting RSA keys. The issue affects chips produced by SK Hynix, Micron, and Samsung. NOTE: tracking DRAM supply-chain issues is not straightforward because a single product model from a single vendor may use DRAM chips from different manufacturers.

 

 >>> Vendor: Samsung 141 Products
Ml-85g gdi printer driver
Ml-85p printer driver
Scx-4200 driver
Dvr shr2040
Calendar
Mobile
Data management server
Series 5 chromebook
Chromebox 3
Series 5 550 chromebook
Net-i viewer
Galaxy s
KIES
Printer firmware
Kies air
Galaxy note
Galaxy note 2
Galaxy s2
Samsungdive
Ps50c7700 television
Ps50c7700 television firmware
Smart viewer
DVR
Shr-5082
Shr-5162
Ipolis device manager
Findmymobile
Smartviewer
Samsung security manager
Sbeam
Galaxy s5
Galaxy s6
Web viewer
Samsung mobile
Exynos fimg2d driver
KNOX
Exynos fimg2d
Notes
Exynos 5800
Galaxy app
Samsung account app
X12 firmware
X10p firmware
Nt14u firmware
X14j firmware
X14h firmware
M288ofw firmware
Galaxy s6 firmware
Galaxy note 3 firmware
Galaxy s4 mini firmware
Galaxy s4 firmware
Galaxy s4 mini lte firmware
Syncthru 6
Galaxy s6 edge firmware
Magician
Srn 1670d firmware
Srn 472s firmware
Srn 1000 firmware
Srn 470d firmware
850 pro firmware
Pm851 firmware
Internet browser
Knox enterprise mobility management
Knox identity access management
Display solutions
Syncthru web service
Sth-eth-250 firmware
Smartthings hub sth-eth-250-firmware
Galaxy s8 firmware
840 evo firmware
850 evo firmware
T3 firmware
T5 firmware
Scx-6545x firmware
X7400gx firmware
Cloud
S10 firmware
S9+ firmware
Xcover 4 firmware
Scx-824 firmware
S-beam
Samsung firmware
Samsung email
Samsung members
Text-to-speech
Samsung internet browser
M2m1shot driver
Exynos 8895
Lpddr4
DDR4
Exynos
Note9
S9
Exynos smp1300
Contacts
S assistant
Internet
Pay mini
One ui
Bixby voice
See all Products for Vendor Samsung


Copyright 2024, cxsecurity.com

 

Back to Top