Type Confusion Vulnerability in Samsung Mobile Devices with TEEGRIS Software (SVE-2019-14867)

Type Confusion Vulnerability in Samsung Mobile Devices with TEEGRIS Software (SVE-2019-14867)

CVE-2019-20587 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on Samsung mobile devices with O(8.1) and P(9.0) (with TEEGRIS) software. There is type confusion in the MLDAP Trustlet, leading to arbitrary code execution. The Samsung ID is SVE-2019-14867 (August 2019).

Learn more about our Cis Benchmark Audit For Mobile Devices.