Arbitrary Code Execution Vulnerability in Samsung Fingerprint Trustlet (SVE-2019-16587, SVE-2019-16588, SVE-2019-16589)

Arbitrary Code Execution Vulnerability in Samsung Fingerprint Trustlet (SVE-2019-16587, SVE-2019-16588, SVE-2019-16589)

CVE-2020-11600 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on Samsung mobile devices with Q(10.0) software. There is arbitrary code execution in the Fingerprint Trustlet via a memory overwrite. The Samsung IDs are SVE-2019-16587, SVE-2019-16588, SVE-2019-16589 (April 2020).

Learn more about our Cis Benchmark Audit For Mobile Devices.