Type Confusion Vulnerability in Samsung SKPM Trustlet (SVE-2019-14892)

Type Confusion Vulnerability in Samsung SKPM Trustlet (SVE-2019-14892)

CVE-2019-20589 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on Samsung mobile devices with O(8.x) and P(9.0) (with TEEGRIS) software. There is type confusion in the SKPM Trustlet, leading to arbitrary code execution. The Samsung ID is SVE-2019-14892 (August 2019).

Learn more about our Cis Benchmark Audit For Mobile Devices.