CVE-2019-16401

Samsung Galaxy S8 plus (Android version: 8.0.0, Build Number: R16NW.G955USQU5CRG3, Baseband Vendor: Qualcomm Snapdragon 835, Baseband: G955USQU5CRG3), Samsung Galaxy S3 (Android version: 4.3, Build Number: JSS15J.I9300XXUGND5, Baseband Vendor: Samsung Exynos 4412, Baseband: I9300XXUGNA8), and Samsung Galaxy Note 2 (Android version: 4.3, Build Number: JSS15J.I9300XUGND5, Baseband Vendor: Samsung Exynos 4412, Baseband: N7100DDUFND1) devices allow injection of AT+CIMI and AT+CGSN over Bluetooth, leaking sensitive information such as IMSI, IMEI, call status, call setup stage, internet service status, signal strength, current roaming status, battery level, and call held status.

CVSS v3 6.5 MEDIUM
CVSS v2.0 3.3 LOW

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

3.3^/10

CVSS v2.0 : LOW

Vector : AV:A/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 6.5 / Impact : 2.9

Access Vector ADJACENT_NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://www.openconf.org/acsac2019/modules/request.php?module=oc_program&action=summary.php&id=210	Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:samsung:galaxy_s8_plus_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:galaxy_s8_plus:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:samsung:galaxy_s3_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:galaxy_s3:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:samsung:galaxy_note_2_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:galaxy_note_2:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-11-06 23:15

Updated : 2023-12-10 13:13

NVD link : CVE-2019-16401

Mitre link : CVE-2019-16401

CVE.ORG link : CVE-2019-16401

JSON object : View

Products Affected

samsung

galaxy_s8_plus
galaxy_note_2_firmware
galaxy_note_2
galaxy_s3_firmware
galaxy_s8_plus_firmware
galaxy_s3

CWE

NVD-CWE-noinfo

{"id": "CVE-2019-16401", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.3, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2019-11-06T23:15:10.463", "references": [{"url": "https://www.openconf.org/acsac2019/modules/request.php?module=oc_program&action=summary.php&id=210", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Samsung Galaxy S8 plus (Android version: 8.0.0, Build Number: R16NW.G955USQU5CRG3, Baseband Vendor: Qualcomm Snapdragon 835, Baseband: G955USQU5CRG3), Samsung Galaxy S3 (Android version: 4.3, Build Number: JSS15J.I9300XXUGND5, Baseband Vendor: Samsung Exynos 4412, Baseband: I9300XXUGNA8), and Samsung Galaxy Note 2 (Android version: 4.3, Build Number: JSS15J.I9300XUGND5, Baseband Vendor: Samsung Exynos 4412, Baseband: N7100DDUFND1) devices allow injection of AT+CIMI and AT+CGSN over Bluetooth, leaking sensitive information such as IMSI, IMEI, call status, call setup stage, internet service status, signal strength, current roaming status, battery level, and call held status."}, {"lang": "es", "value": "Los dispositivos Samsung Galaxy S8 plus (versi\u00f3n de Android: 8.0.0, N\u00famero de Compilaci\u00f3n: R16NW.G955USQU5CRG3, Suplidor de Banda Base: Qualcomm Snapdragon 835, Banda Base: G955USQU5CRG3), Samsung Galaxy S3 (versi\u00f3n de Android: 4.3, N\u00famero de Compilaci\u00f3n: JSS15J.I9300XXUGND5, Suplidor de Banda Base: Samsung Exynos 4412, Banda Base: I9300XXUGNA8) y Samsung Galaxy Note 2 (versi\u00f3n de Android: 4.3, N\u00famero de Compilaci\u00f3n: JSS15J.I9300XUGND5, Suplidor de Banda Base: Samsung Exynos 4412, Banda Base: N7100DDUFND1), permiten la inyecci\u00f3n de AT+CIMI y AT+CGSN mediante Bluetooth, una filtrado de informaci\u00f3n confidencial, como IMSI, IMEI, estado de la llamada, etapa de configuraci\u00f3n de la llamada, estado del servicio de Internet, intensidad de la se\u00f1al, estado de roaming actual, nivel de bater\u00eda y estado de llamada retenida."}], "lastModified": "2020-08-24T17:37:01.140", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:galaxy_s8_plus_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "357006C1-11B3-49D2-A8DE-03DF52501DC9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:galaxy_s8_plus:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "71B1548A-DF80-4530-8B0E-0B83D414AAD6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:galaxy_s3_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E17ACF33-BA4B-4FD4-811F-4AD860C016E7"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:galaxy_s3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5A294254-1687-4340-BF07-06373FBFC072"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:galaxy_note_2_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9ABF64AC-AA4A-4108-86AF-C976CC2530EC"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:galaxy_note_2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C11A19CD-FAFE-45ED-A24C-72642C3ED565"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}