CVE-2019-16256
| CVE Published | 2019-09-12 |
|---|---|
| Related Vendor(s) | samsung |
| Related Product(s) | samsung_firmware |
| Exploitation Reported (CISA KEV) | 2021-11-03 |
| CVSS 3 Base Score | 9.8 (CRITICAL) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | NETWORK |
Some Samsung devices include the SIMalliance Toolbox Browser (aka S@T Browser) on the UICC, which might allow remote attackers to retrieve location and IMEI information, or retrieve other data or execute certain commands, via SIM Toolkit (STK) instructions in an SMS message, aka Simjacker.
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph