CVE-2019-20607
9.8CRITICALAn issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) (MSM8996, MSM8998, Exynos7420, Exynos7870, Exynos8890, and Exynos8895 chipsets) software. A heap overflow in the keyma
Опубликовано: 3/24/2020Обновлено: 11/21/2024
Описание
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) (MSM8996, MSM8998, Exynos7420, Exynos7870, Exynos8890, and Exynos8895 chipsets) software. A heap overflow in the keymaster Trustlet allows attackers to write to TEE memory, and achieve arbitrary code execution. The Samsung ID is SVE-2019-14126 (May 2019).
ИИ-АнализНа базе ИИ
Затронутые продукты
googleandroid
7.0
googleandroid
7.1.0
googleandroid
7.1.1
googleandroid
7.1.2
googleandroid
8.0
googleandroid
8.1
googleandroid
9.0
qualcommmsm8996
-
qualcommmsm8998
-
samsungexynos_7420
-
samsungexynos_7870
-
samsungexynos_8890
-
samsungexynos_8895
-
Ссылки
- https://security.samsungmobile.com/securityUpdate.smsbVendor Advisory
- https://security.samsungmobile.com/securityUpdate.smsbVendor Advisory