PT-2019-6297 · Qualcomm+1 · Qualcomm Chipsets+2

Publicado

2019-02-04

Atualizado

2020-03-30

CVE-2019-20590

CVSS v2.0

Crítica

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Samsung mobile devices with O(8.x) software and Qualcomm chipsets (SDM660, MSM8998, SDM845, SM8150)

Description The issue is caused by an integer underflow in the Secure Storage Trustlet, which may allow a remote attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations For Samsung mobile devices with O(8.x) software and Qualcomm chipsets, update the software to a version that fixes the integer underflow issue in the Secure Storage Trustlet. As a temporary workaround, consider restricting access to the Secure Storage Trustlet until a patch is available.

Correção

Integer Underflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-191

Identificadores relacionados

BDU:2022-07426

CVE-2019-20590

Produtos afetados

Qualcomm Chipsets

Samsung Mobile Devices

Secure Storage Trustlet

PT-2019-6297 · Qualcomm+1 · Qualcomm Chipsets+2

CVE-2019-20590

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6