CVE-2019-16257
Summary
| CVE | CVE-2019-16257 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-09-12 13:15:00 UTC |
| Updated | 2020-08-24 17:37:00 UTC |
| Description | Some Motorola devices include the SIMalliance Toolbox Browser (aka S@T Browser) on the UICC, which might allow remote attackers to retrieve location and IMEI information, or retrieve other data or execute certain commands, via SIM Toolkit (STK) instructions in an SMS message, aka Simjacker. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Motorola | Motorola | - | All | All | All |
| Hardware | Motorola | Motorola | - | All | All | All |
| Operating System | Motorola | Motorola Firmware | - | All | All | All |
| Operating System | Motorola | Motorola Firmware | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Simjacker – Next Generation Spying Over Mobile | Mobile Security News | AdaptiveMobile | MISC | www.adaptivemobile.com | Exploit, Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.