ZDI-19-515: Samsung Knox Secure Folder Lock Screen Bypass Vulnerability
This vulnerability allows local attackers to disclose sensitive information on vulnerability installations of Samsung Secure Folder. An attacker must first obtain physical access to the device in order to exploit this vulnerability. The specific flaws exists within the the handling of the lock screen for Secure Folder. The issue results from the lack of proper validation that a user has correctly authenticated. An attacker can leverage this vulnerability to disclose the contents of the secure container.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samsung KNOX |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of ZDI-19-515?
The severity of ZDI-19-515 is classified as high due to the potential for sensitive information disclosure.
How do I fix ZDI-19-515?
To fix ZDI-19-515, users should apply the latest security updates provided by Samsung for the KNOX platform.
What type of attacker can exploit ZDI-19-515?
ZDI-19-515 can be exploited by a local attacker who has physical access to the device.
What kind of information can ZDI-19-515 disclose?
ZDI-19-515 allows attackers to disclose sensitive information that may be stored within Samsung Secure Folder.
Which software is affected by ZDI-19-515?
The affected software for ZDI-19-515 is Samsung KNOX, specifically its implementation of the Secure Folder.
- agent/references
- agent/type
- agent/softwarecombine
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-19-515
- alias/ZDI-CAN-7381
- alias/CVE-2019-6744
- agent/software-canonical-lookup
- agent/title
- agent/severity
- agent/tags
- agent/description
- agent/event
- agent/source
- vendor/samsung
- canonical/samsung knox