CVE-2019-16253 - OpenCVE

The Text-to-speech Engine (aka SamsungTTS) application before 3.0.02.7 and 3.0.00.101 for Android allows a local attacker to escalate privileges, e.g., to system privileges. The Samsung case ID is 101755.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Samsung	Text-to-speech

Configuration 1 [-]

OR	cpe:2.3:a:samsung:text-to-speech::::::android::*
	cpe:2.3:a:samsung:text-to-speech::::::android::*

References

Link	Resource
http://packetstormsecurity.com/files/154614/Samsung-Mobile-Android-SamsungTTS-Privilege-Escalation.html	Exploit Third Party Advisory VDB Entry
https://blog.flanker017.me/text-to-speech-speaks-pwned/
https://github.com/flankerhqd/vendor-android-cves/tree/master/SMT-CVE-2019-16253

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2019-09-25T22:40:55

Updated: 2020-02-06T16:04:06

Reserved: 2019-09-11T00:00:00

Link: CVE-2019-16253

JSON object: View

NVD Information

Status : Modified

Published: 2019-09-25T23:15:10.607

Modified: 2020-08-24T17:37:01.140

Link: CVE-2019-16253

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-noinfo

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The Text-to-speech Engine (aka SamsungTTS) application before 3.0.02.7 and 3.0.00.101 for Android allows a local attacker to escalate privileges, e.g., to system privileges. The Samsung case ID is 101755."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-02-06T16:04:06", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/154614/Samsung-Mobile-Android-SamsungTTS-Privilege-Escalation.html"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/flankerhqd/vendor-android-cves/tree/master/SMT-CVE-2019-16253"}, {"tags": ["x_refsource_MISC"], "url": "https://blog.flanker017.me/text-to-speech-speaks-pwned/"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-16253", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Text-to-speech Engine (aka SamsungTTS) application before 3.0.02.7 and 3.0.00.101 for Android allows a local attacker to escalate privileges, e.g., to system privileges. The Samsung case ID is 101755."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://packetstormsecurity.com/files/154614/Samsung-Mobile-Android-SamsungTTS-Privilege-Escalation.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/154614/Samsung-Mobile-Android-SamsungTTS-Privilege-Escalation.html"}, {"name": "https://github.com/flankerhqd/vendor-android-cves/tree/master/SMT-CVE-2019-16253", "refsource": "MISC", "url": "https://github.com/flankerhqd/vendor-android-cves/tree/master/SMT-CVE-2019-16253"}, {"name": "https://blog.flanker017.me/text-to-speech-speaks-pwned/", "refsource": "MISC", "url": "https://blog.flanker017.me/text-to-speech-speaks-pwned/"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2019-16253", "datePublished": "2019-09-25T22:40:55", "dateReserved": "2019-09-11T00:00:00", "dateUpdated": "2020-02-06T16:04:06", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:samsung:text-to-speech:*:*:*:*:*:android:*:*", "matchCriteriaId": "BED0250B-631B-4ABF-9505-BBA8070E62EF", "versionEndExcluding": "3.0.00.101", "vulnerable": true}, {"criteria": "cpe:2.3:a:samsung:text-to-speech:*:*:*:*:*:android:*:*", "matchCriteriaId": "4BC1FAFC-7A7A-4DA4-BF34-06EB0369EECA", "versionEndExcluding": "3.0.02.7", "versionStartIncluding": "3.0.00.102", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Text-to-speech Engine (aka SamsungTTS) application before 3.0.02.7 and 3.0.00.101 for Android allows a local attacker to escalate privileges, e.g., to system privileges. The Samsung case ID is 101755."}, {"lang": "es", "value": "La aplicaci\u00f3n Text-to-speech Engine (tambi\u00e9n se conoce como SamsungTTS) versiones anteriores a 3.0.02.7 y 3.0.00.101 para Android, permite a un atacante local escalar privilegios, por ejemplo, privilegios de sistema. La identificaci\u00f3n del caso de Samsung es 101755."}], "id": "CVE-2019-16253", "lastModified": "2020-08-24T17:37:01.140", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-09-25T23:15:10.607", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "url": "http://packetstormsecurity.com/files/154614/Samsung-Mobile-Android-SamsungTTS-Privilege-Escalation.html"}, {"source": "cve@mitre.org", "url": "https://blog.flanker017.me/text-to-speech-speaks-pwned/"}, {"source": "cve@mitre.org", "url": "https://github.com/flankerhqd/vendor-android-cves/tree/master/SMT-CVE-2019-16253"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}