cvedb.io
CVE-2016-2036
MEDIUM · CVSS 5.5
EPSS exploitation probability: 0%
Published 2017-04-13T16:59:01.003 · Last modified 2026-06-17T00:43:18.023

Summary

The getURL function in drivers/secfilter/urlparser.c in secfilter in the Samsung kernel for Android on SM-N9005 build N9005XXUGBOB6 (Note 3) and SM-G920F build G920FXXU2COH2 (Galaxy S6) devices allows attackers to trigger a NULL pointer dereference via a "GET HTTP/1.1" request, aka SVE-2016-5036.

Affected products

samsung — galaxy_s6_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when samsung ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.