Vulnerabilities > CVE-2019-17668 - Unspecified vulnerability in Samsung Galaxy S10 Firmware and Note 10 Firmware

CVSS 6.8 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

samsung

NVD

Published: 2019-10-17

Updated: 2021-07-21

Summary

Samsung Galaxy S10 and Note10 devices allow unlock operations via unregistered fingerprints in certain situations involving a third-party screen protector.

Vulnerable Configurations

Part	Description	Count
OS	Samsung Samsung Galaxy S10 Firmware - Samsung Note 10 Firmware -	2
Hardware	Samsung Samsung Galaxy S10 - Samsung Note 10 -	2

References

https://news.ycombinator.com/item?id=21280205
https://www.forbes.com/sites/gordonkelly/2019/10/15/samsung-galaxy-s10-note10-plus-fingerprint-reader-warning-upgrade-galaxy-s11
https://www.engadget.com/2019/10/17/samsung-patch-fingerprint-reader/