First published: Tue May 14 2019(Updated: )
** DISPUTED ** Samsung S9+, S10, and XCover 4 P(9.0) devices can become temporarily inoperable because of an unprotected intent in the ContainerAgent application. For example, the victim becomes stuck in a launcher with their Secure Folder locked. NOTE: the researcher mentions "the Samsung Security Team considered this issue as no/little security impact."
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Samsung S9\+ Firmware | ||
Samsung S9\+ | ||
Samsung S10 Firmware | ||
Samsung S10 | ||
Samsung Xcover 4 Firmware | ||
Samsung Xcover 4 | ||
All of | ||
Samsung S9\+ Firmware | ||
Samsung S9\+ | ||
All of | ||
Samsung S10 Firmware | ||
Samsung S10 | ||
All of | ||
Samsung Xcover 4 Firmware | ||
Samsung Xcover 4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity rating of CVE-2019-12087 is currently disputed and requires further validation.
To address CVE-2019-12087, users should check for and install any available firmware updates from Samsung.
CVE-2019-12087 affects Samsung S9+, S10, and XCover 4 devices running Android P (9.0) firmware.
Affected devices may become temporarily inoperable, causing users to be stuck in a launcher with their Secure Folder locked.
No, CVE-2019-12087 leads to temporary inoperability, and the issue can typically be resolved with a firmware update.