CVE-2019-20580 : An issue was discovered on Samsung mobile devices with P(9.0) software. The Motion photo player allows attackers to bypa

An issue was discovered on Samsung mobile devices with P(9.0) software. The Motion photo player allows attackers to bypass the Secure Folder feature to view images. The Samsung ID is SVE-2019-14653 (August 2019).

Published 2020-03-24 19:15:20

Updated 2021-07-21 11:39:24

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2019-20580

Probability of exploitation activity in the next 30 days: 0.07%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 28 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2019-20580

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
5.3	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N	3.9	1.4	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: None Availability: None

References for CVE-2019-20580

https://security.samsungmobile.com/securityUpdate.smsb

Android Security Updates Details | Samsung Mobile Security
Vendor Advisory

CVEs referencing this url

Products affected by CVE-2019-20580

Google » Android » Version: 9.0
cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2019-20580

Exploit prediction scoring system (EPSS) score for CVE-2019-20580

CVSS scores for CVE-2019-20580

References for CVE-2019-20580

Products affected by CVE-2019-20580