What is CVE-2019-6742?

CVE-2019-6742 is a critical-severity vulnerability in Samsung Galaxy S9, classified under CWE-358. CVSS score: 9.8/10. Published 2019-06-03.

How severe is CVE-2019-6742?

Critical severity. CVSS v3 base score is 9.8 out of 10.

Vulnerability in Samsung Galaxy S9

CVE-2019-6742

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung Galaxy S9 prior to 1.4.20.2. Authentication is not required to exploit this vulnerability. The specific flaw exists within the hand…

EPSS: 0.059 (92.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Samsung Galaxy S9 — versions prior to 1.4.20.2
Samsung Galaxy_s9
Samsung Galaxy_s9_firmware

Weakness classification (CWE)

CWE-358

References

zdi-disclosures@trendmicro.com (VDB Entry, Third Party Advisory, x_refsource_MISC)

Frequently asked questions

What is CVE-2019-6742?: CVE-2019-6742 is a critical-severity vulnerability in Samsung Galaxy S9, classified under CWE-358. CVSS score: 9.8/10. Published 2019-06-03.
How severe is CVE-2019-6742?: Critical severity. CVSS v3 base score is 9.8 out of 10.