RKP Memory Corruption Vulnerability on Samsung Mobile Devices (SVE-2019-15221)

RKP Memory Corruption Vulnerability on Samsung Mobile Devices (SVE-2019-15221)

CVE-2019-20556 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on Samsung mobile devices with P(9.0) (SM6150, SM8150, SM8150_FUSION, exynos7885, exynos9610, and exynos9820 chipsets) software. RKP memory corruption allows attackers to control the effective address in EL2. The Samsung ID is SVE-2019-15221 (October 2019).

Learn more about our Cis Benchmark Audit For Mobile Devices.