CVE-2018-21077
Description
An issue was discovered on Samsung mobile devices with M(6.0), N(7.x), and O(8.x) software. There is a Clipboard content disclosure in the locked state because the keyboard may be used during an emergency call. The Samsung ID is SVE-2017-11107 (April 2018).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Samsung mobile devices with Android M, N, and O disclose clipboard content during locked emergency calls.
Vulnerability
An issue exists in Samsung mobile devices running Android versions M(6.0), N(7.x), and O(8.x). The clipboard content can be disclosed while the device is locked because the keyboard remains usable during an emergency call, bypassing lock screen protections. The vulnerability was tracked by Samsung under SVE-2017-11107.
Exploitation
An attacker with physical access to a locked device can initiate an emergency call, enabling the keyboard. This may allow the attacker to access clipboard contents that were copied before the device was locked.
Impact
Successful exploitation leads to disclosure of clipboard content, potentially exposing sensitive information such as passwords, personal data, or other copied text. The attacker gains this information without unlocking the device.
Mitigation
Samsung released a security update in April 2018 to address this issue. Users should apply the latest security patch for their device. Devices that no longer receive updates may remain vulnerable.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- security.samsungmobile.com/securityUpdate.smsbmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.