Vulnerability Details CVE-2019-20610
An issue was discovered on Samsung mobile devices with N(7.X) and O(8.X) (Exynos 7570, 7870, 7880, 7885, 8890, 8895, and 9810 chipsets) software. A double-fetch vulnerability in Trustlet allows arbitrary TEE code execution. The Samsung ID is SVE-2019-13910 (April 2019).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 36.8%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 9.3
References
Products affected by CVE-2019-20610
-
cpe:2.3:h:samsung:exynos_7570:-
-
cpe:2.3:h:samsung:exynos_7870:-
-
cpe:2.3:h:samsung:exynos_7880:-
-
cpe:2.3:h:samsung:exynos_7885:-
-
cpe:2.3:h:samsung:exynos_8890:-
-
cpe:2.3:h:samsung:exynos_8895:-
-
cpe:2.3:h:samsung:exynos_9810:-
-
cpe:2.3:o:google:android:7.0
-
cpe:2.3:o:google:android:7.1.0
-
cpe:2.3:o:google:android:7.1.1
-
cpe:2.3:o:google:android:7.1.2
-
cpe:2.3:o:google:android:8.0
-
cpe:2.3:o:google:android:8.1