Security Advisory

CVE-2025-20888

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-04 07:19:35
Last updated 2025-02-04 16:21:02
Assigner SamsungMobile
State PUBLISHED

Description

Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.