CVE-2019-20536

EUVD-2019-11076
An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), and P(9.0) (released in China) software. The Firewall application mishandles the PermissionWhiteLists protection mechanism. The Samsung ID is SVE-2019-14299 (November 2019).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 32%
Affected Products (NVD)
VendorProductVersion
googleandroid
7.1
googleandroid
8.0
googleandroid
8.1
googleandroid
9.0
googleandroid
10.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://security.samsungmobile.com/securityUpdate.smsb
https://security.samsungmobile.com/securityUpdate.smsb