Sign-up

ID

VAR-202001-0447


CVE

CVE-2019-6331


TITLE

Samsung Mobile Print Information Disclosure Vulnerability

Trust: 1.4

sources: JVNDB: JVNDB-2019-014070 // CNNVD: CNNVD-202001-319

DESCRIPTION

An issue was found in Samsung Mobile Print (Android) versions prior to 4.08.007. A potential security vulnerability caused by incomplete obfuscation of application configuration information. Remote attackers can use this vulnerability to submit special requests to obtain sensitive information

Trust: 2.16

sources: NVD: CVE-2019-6331 // JVNDB: JVNDB-2019-014070 // CNVD: CNVD-2020-13855

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2020-13855

AFFECTED PRODUCTS

vendor:hpmodel:samsung mobile printscope:ltversion:4.08.007

Trust: 1.6

vendor:hewlett packardmodel:samsung mobile printscope:ltversion:(android) 4.08.007

Trust: 0.8

sources: CNVD: CNVD-2020-13855 // JVNDB: JVNDB-2019-014070 // NVD: CVE-2019-6331

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-6331
value: LOW

Trust: 1.0

NVD: CVE-2019-6331
value: LOW

Trust: 0.8

CNVD: CNVD-2020-13855
value: LOW

Trust: 0.6

CNNVD: CNNVD-202001-319
value: LOW

Trust: 0.6

nvd@nist.gov: CVE-2019-6331
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2020-13855
severity: LOW
baseScore: 1.7
vectorString: AV:L/AC:L/AU:S/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.1
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

nvd@nist.gov: CVE-2019-6331
baseSeverity: LOW
baseScore: 3.3
vectorString: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: LOW
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 1.8
impactScore: 1.4
version: 3.1

Trust: 1.0

NVD: CVE-2019-6331
baseSeverity: LOW
baseScore: 3.3
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: LOW
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: CNVD: CNVD-2020-13855 // JVNDB: JVNDB-2019-014070 // CNNVD: CNNVD-202001-319 // NVD: CVE-2019-6331

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.8

sources: JVNDB: JVNDB-2019-014070 // NVD: CVE-2019-6331

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202001-319

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-202001-319

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2019-014070

PATCH
title:c06424557url:https://support.hp.com/in-en/document/c06424557
Trust: 0.8
title:Patch for HP Samsung Mobile Print Information Disclosure Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/204983
Trust: 0.6
title:HP Samsung Mobile Print Repair measures for information disclosure vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=108402
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2020-13855 // 
            
            
            
            JVNDB: JVNDB-2019-014070 // 
            
            
            
            CNNVD: CNNVD-202001-319

EXTERNAL IDS
db:NVDid:CVE-2019-6331
Trust: 3.0
db:JVNDBid:JVNDB-2019-014070
Trust: 0.8
db:CNVDid:CNVD-2020-13855
Trust: 0.6
db:CNNVDid:CNNVD-202001-319
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2020-13855 // 
            
            
            
            JVNDB: JVNDB-2019-014070 // 
            
            
            
            CNNVD: CNNVD-202001-319 // 
            
            
            
            NVD: CVE-2019-6331

REFERENCES
url:https://nvd.nist.gov/vuln/detail/cve-2019-6331
Trust: 2.0
url:https://support.hp.com/in-en/document/c06424557
Trust: 1.6
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-6331
Trust: 0.8
sources:
            
            
            CNVD: CNVD-2020-13855 // 
            
            
            
            JVNDB: JVNDB-2019-014070 // 
            
            
            
            CNNVD: CNNVD-202001-319 // 
            
            
            
            NVD: CVE-2019-6331

SOURCES
db:CNVDid:CNVD-2020-13855
db:JVNDBid:JVNDB-2019-014070
db:CNNVDid:CNNVD-202001-319
db:NVDid:CVE-2019-6331

LAST UPDATE DATE
2024-11-23T22:05:51+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2020-13855date:2020-02-26T00:00:00
db:JVNDBid:JVNDB-2019-014070date:2020-01-31T00:00:00
db:CNNVDid:CNNVD-202001-319date:2021-07-14T00:00:00
db:NVDid:CVE-2019-6331date:2024-11-21T04:46:25.510

SOURCES RELEASE DATE
db:CNVDid:CNVD-2020-13855date:2020-02-26T00:00:00
db:JVNDBid:JVNDB-2019-014070date:2020-01-31T00:00:00
db:CNNVDid:CNNVD-202001-319date:2020-01-09T00:00:00
db:NVDid:CVE-2019-6331date:2020-01-09T19:15:10.650