CVE-2019-15441
First published: Thu Nov 14 2019(Updated: )
The Samsung on7xeltelgt Android device with a build fingerprint of samsung/on7xeltelgt/on7xeltelgt:8.1.0/M1AJQ/G610LKLU2CSB1:user/release-keys contains a pre-installed app with a package name of com.samsung.android.themecenter app (versionCode=7000100, versionName=7.0.1.0) that allows other pre-installed apps to perform app installation via an accessible app component. This capability can be accessed by any pre-installed app on the device which can obtain signatureOrSystem permissions that are required by other other pre-installed apps that exported their capabilities to other pre-installed app.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samsung On 7 Firmware | ||
| Samsung On 7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue with the Samsung on7xeltelgt Android device?
The vulnerability ID for this issue is CVE-2019-15441.
What is the severity rating of CVE-2019-15441?
CVE-2019-15441 has a severity rating of 7.8 (high).
What is the affected software in CVE-2019-15441?
The affected software in CVE-2019-15441 is the Samsung On 7 Firmware.
What is the description of CVE-2019-15441?
CVE-2019-15441 is a vulnerability found in the Samsung on7xeltelgt Android device that allows other pre-installed apps to overwrite arbitrary files.
Is the Samsung On 7 device vulnerable to CVE-2019-15441?
No, the Samsung On 7 device is not vulnerable to CVE-2019-15441.
- collector/nvd-index
- vendor/samsung
- product/on 7 firmware
- canonical/samsung on 7 firmware
- product/on 7
- canonical/samsung on 7