"Samsung Smartphone Users Warned of Actively Exploited Vulnerability"

The US Cybersecurity and Infrastructure Security Agency (CISA) recently warned Samsung smartphone users about a recently patched vulnerability being exploited in attacks.  The flaw is CVE-2023-21492, described as a kernel pointer exposure issue related to log files.  The security hole can allow a privileged local attacker to bypass the ASLR exploit mitigation technique.  CISA noted that this indicates that it has likely been chained with other bugs.  Samsung patched the vulnerability with its May 2023 security updates and said it learned about the flaw in mid-January.  The company said certain Android 11, 12, and 13 devices are impacted.  CISA added the bug to its Known Exploited Vulnerabilities (KEV) catalog on Friday, instructing government agencies to patch it by June 9.  The vulnerability was discovered by Google’s Threat Analysis Group, which suggests that it has likely been exploited by a commercial spyware vendor. 

SecurityWeek reports: "Samsung Smartphone Users Warned of Actively Exploited Vulnerability"