CVE-2019-20573
https://notcve.org/view.php?id=CVE-2019-20573
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) software. There is local SQL injection in the RCS Content Provider. The Samsung IDs are SVE-2019-14059, SVE-2019-14685 (August 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.x), O(8.x) y P(9.0). Se presenta una inyección SQL local en el RCS Content Provider. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2019-20571
https://notcve.org/view.php?id=CVE-2019-20571
An issue was discovered on Samsung mobile devices with O(8.x) (with TEEGRIS) software. There is type confusion in the WVDRM Trustlet, leading to arbitrary code execution. The Samsung ID is SVE-2019-14885 (September 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software O(8.x) (con TEEGRIS). Se presenta una confusión de tipos en el WVDRM Trustlet, conllevando a una ejecución de código arbitrario. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVE-2019-20570
https://notcve.org/view.php?id=CVE-2019-20570
An issue was discovered on Samsung mobile devices with P(9.0), O(8.0), and N(7.1) software. Attackers can bypass Factory Reset Protection (FRP) via Smart Switch. The Samsung ID is SVE-2019-15138 (September 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software P(9.0), O(8.0) y N(7.1). Los atacantes pueden omitir la Factory Reset Protection (FRP) por medio de Smart Switch. • https://security.samsungmobile.com/securityUpdate.smsb •
CVE-2019-20568
https://notcve.org/view.php?id=CVE-2019-20568
An issue was discovered on Samsung mobile devices with O(8.x) and P(9.0) devices (Exynos and Qualcomm chipsets) software. A race condition causes a Use-After-Free. The Samsung ID is SVE-2019-15067 (September 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software de dispositivos O(8.x) y P(9.0) (chipsets Exynos y Qualcomm). Una condición de carrera causa un uso de la memoria previamente liberada. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •
CVE-2019-20567
https://notcve.org/view.php?id=CVE-2019-20567
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) (Exynos chipsets) software. A up_parm heap overflow leads to code execution in the bootloader. The Samsung ID is SVE-2019-14993 (September 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.x), O(8.x) y P(9.0) (chipsets Exynos). Un desbordamiento de la pila (heap) de up_parm conlleva a una ejecución de código en el cargador de arranque. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-787: Out-of-bounds Write •