Remote Code Execution Vulnerability in Samsung Galaxy S9 by Samsung
CVE-2019-6741

6.5MEDIUM

Key Information:

Vendor: Samsung
Status: Galaxy S9
Vendor: CVE Published:; 3 June 2019

Summary

A remote code execution vulnerability exists in Samsung Galaxy S9 devices that have not been updated beyond the January 2019 Security Update. The flaw is located within the captive portal, which can be exploited by attackers through manipulated HTML. To capitalize on this flaw, users must connect to a malicious wireless network, allowing attackers to redirect users to their own pages. Once the user interacts with the malicious page, arbitrary code can be executed within the context of the current process, posing significant security risks to devices affected by this vulnerability.

Affected Version(s)

Galaxy S9 prior to January 2019 Security Update (SMR-JAN-2019 - SVE-2018-13467)

References

https://www.zerodayinitiative.com/advisories/ZDI-19-254/

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jun 3, 2019
Vulnerability Reserved
Jan 24, 2019

Credit

MWR Labs - Georgi Geshev and Robert Miller