CVE-2019-2215 - Vulnerability Details

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is in the KEV database since Nov. 3, 2021.

The EPSS score is 0.52386.

Exploitation active

Automatable no

Technical Impact total

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

Android

affected

Version	Status	Constraints
`Kernel`	affected	—

Configuration 1 [-]

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration 3 [-]

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

Configuration 4 [-]

OR	cpe:2.3:a:netapp:cloud_backup:-:::::::*
	cpe:2.3:a:netapp:data_availability_services:-:::::::*
	cpe:2.3:a:netapp:hci_management_node:-:::::::*
	cpe:2.3:a:netapp:service_processor:-:::::::*
	cpe:2.3:a:netapp:solidfire:-:::::::*
	cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:::::::*

Configuration 5 [-]

AND

cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:netapp:aff_baseboard_management_controller_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:aff_baseboard_management_controller:a700s:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:netapp:a320_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:a320:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:netapp:c190_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:c190:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:netapp:a220_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:a220:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:netapp:fas2720_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:fas2720:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:netapp:fas2750_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:fas2750:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:netapp:a800_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:a800:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:netapp:h610s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h610s:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:huawei:alp-al00b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:alp-al00b:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:huawei:alp-tl00b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:alp-tl00b:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:huawei:anne-al00_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:anne-al00:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:huawei:ares-al00b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ares-al00b:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:huawei:ares-al10d_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ares-al10d:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:huawei:ares-tl00chw_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ares-tl00chw:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:huawei:bla-al00b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:bla-al00b:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:huawei:bla-l29c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:bla-l29c:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:huawei:bla-tl00b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:bla-tl00b:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:huawei:barca-al00_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:barca-al00:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:huawei:berkeley-l09_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:berkeley-l09:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:huawei:berkeley-tl10_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:berkeley-tl10:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:huawei:columbia-al00a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:columbia-al00a:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:huawei:columbia-l29d_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:columbia-l29d:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:huawei:cornell-tl10b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:cornell-tl10b:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:huawei:duke-l09i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:duke-l09i:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:huawei:dura-al00a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:dura-al00a:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:huawei:figo-al00a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:figo-al00a:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:huawei:florida-al20b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:florida-al20b:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:huawei:florida-l03_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:florida-l03:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:huawei:florida-l21_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:florida-l21:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:huawei:florida-l22_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:florida-l22:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:huawei:florida-tl10b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:florida-tl10b:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:huawei:mate_rs_firmware:9.1.0.321\(c786e320r1p1t8\):*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_rs:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:huawei:p20_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p20:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:huawei:p20_lite_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p20_lite:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:huawei:p20_lite_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p20_lite:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:huawei:p20_lite_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p20_lite:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:huawei:y9_2019_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:y9_2019:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:huawei:nova_2s_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:nova_2s:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:huawei:nova_3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:nova_3:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:huawei:nova_3e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:nova_3e:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:huawei:p20_lite_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p20_lite:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:huawei:p20_lite_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p20_lite:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

cpe:2.3:o:huawei:nova_3e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:nova_3e:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:huawei:nova_3e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:nova_3e:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:huawei:p20_lite_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p20_lite:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:huawei:honor_view_20_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:honor_view_20:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:huawei:jakarta-al00a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:jakarta-al00a:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

cpe:2.3:o:huawei:johnson-tl00d_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:johnson-tl00d:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

cpe:2.3:o:huawei:leland-al10b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:leland-al10b:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND

cpe:2.3:o:huawei:leland-l21a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:leland-l21a:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND

cpe:2.3:o:huawei:leland-l32a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:leland-l32a:-:*:*:*:*:*:*:*

Configuration 62 [-]

AND

cpe:2.3:o:huawei:leland-tl10b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:leland-tl10b:-:*:*:*:*:*:*:*

Configuration 63 [-]

AND

cpe:2.3:o:huawei:leland-tl10c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:leland-tl10c:-:*:*:*:*:*:*:*

Configuration 64 [-]

AND

cpe:2.3:o:huawei:lelandp-al00c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:lelandp-al00c:-:*:*:*:*:*:*:*

Configuration 65 [-]

AND

cpe:2.3:o:huawei:lelandp-l22c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:lelandp-l22c:-:*:*:*:*:*:*:*

Configuration 66 [-]

AND

cpe:2.3:o:huawei:neo-al00d_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:neo-al00d:-:*:*:*:*:*:*:*

Configuration 67 [-]

AND

cpe:2.3:o:huawei:princeton-al10b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:princeton-al10b:-:*:*:*:*:*:*:*

Configuration 68 [-]

AND

cpe:2.3:o:huawei:rhone-al00_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:rhone-al00:-:*:*:*:*:*:*:*

Configuration 69 [-]

AND

cpe:2.3:o:huawei:stanford-l09_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:stanford-l09:-:*:*:*:*:*:*:*

Configuration 70 [-]

AND

cpe:2.3:o:huawei:stanford-l09s_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:stanford-l09s:-:*:*:*:*:*:*:*

Configuration 71 [-]

AND

cpe:2.3:o:huawei:sydney-al00_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:sydney-al00:-:*:*:*:*:*:*:*

Configuration 72 [-]

AND

cpe:2.3:o:huawei:sydney-tl00_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:sydney-tl00:-:*:*:*:*:*:*:*

Configuration 73 [-]

AND

cpe:2.3:o:huawei:sydneym-al00_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:sydneym-al00:-:*:*:*:*:*:*:*

Configuration 74 [-]

AND

cpe:2.3:o:huawei:tony-al00b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:tony-al00b:-:*:*:*:*:*:*:*

Configuration 75 [-]

AND

cpe:2.3:o:huawei:tony-tl00b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:tony-tl00b:-:*:*:*:*:*:*:*

Configuration 76 [-]

AND

cpe:2.3:o:huawei:yale-al00a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:yale-al00a:-:*:*:*:*:*:*:*

Configuration 77 [-]

AND

cpe:2.3:o:huawei:yale-l21a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:yale-l21a:-:*:*:*:*:*:*:*

Configuration 78 [-]

AND

cpe:2.3:o:huawei:yale-tl00b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:yale-tl00b:-:*:*:*:*:*:*:*

Configuration 79 [-]

AND

cpe:2.3:o:huawei:honor_9i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:honor_9i:-:*:*:*:*:*:*:*

No data.

Project Subscriptions

Vendors	Products
Canonical Subscribe	Ubuntu Linux Subscribe
Debian Subscribe	Debian Linux Subscribe
Google Subscribe	Android Subscribe
Huawei Subscribe	Alp-al00b Subscribe Alp-al00b Firmware Subscribe Alp-tl00b Subscribe Alp-tl00b Firmware Subscribe Anne-al00 Subscribe Anne-al00 Firmware Subscribe Ares-al00b Subscribe Ares-al00b Firmware Subscribe Ares-al10d Subscribe Ares-al10d Firmware Subscribe Ares-tl00chw Subscribe Ares-tl00chw Firmware Subscribe Barca-al00 Subscribe Barca-al00 Firmware Subscribe Berkeley-l09 Subscribe Berkeley-l09 Firmware Subscribe Berkeley-tl10 Subscribe Berkeley-tl10 Firmware Subscribe Bla-al00b Subscribe Bla-al00b Firmware Subscribe Bla-l29c Subscribe Bla-l29c Firmware Subscribe Bla-tl00b Subscribe Bla-tl00b Firmware Subscribe Columbia-al00a Subscribe Columbia-al00a Firmware Subscribe Columbia-l29d Subscribe Columbia-l29d Firmware Subscribe Cornell-tl10b Subscribe Cornell-tl10b Firmware Subscribe Duke-l09i Subscribe Duke-l09i Firmware Subscribe Dura-al00a Subscribe Dura-al00a Firmware Subscribe Figo-al00a Subscribe Figo-al00a Firmware Subscribe Florida-al20b Subscribe Florida-al20b Firmware Subscribe Florida-l03 Subscribe Florida-l03 Firmware Subscribe Florida-l21 Subscribe Florida-l21 Firmware Subscribe Florida-l22 Subscribe Florida-l22 Firmware Subscribe Florida-tl10b Subscribe Florida-tl10b Firmware Subscribe Honor 9i Subscribe Honor 9i Firmware Subscribe Honor View 20 Subscribe Honor View 20 Firmware Subscribe Jakarta-al00a Subscribe Jakarta-al00a Firmware Subscribe Johnson-tl00d Subscribe Johnson-tl00d Firmware Subscribe Leland-al10b Subscribe Leland-al10b Firmware Subscribe Leland-l21a Subscribe Leland-l21a Firmware Subscribe Leland-l32a Subscribe Leland-l32a Firmware Subscribe Leland-tl10b Subscribe Leland-tl10b Firmware Subscribe Leland-tl10c Subscribe Leland-tl10c Firmware Subscribe Lelandp-al00c Subscribe Lelandp-al00c Firmware Subscribe Lelandp-l22c Subscribe Lelandp-l22c Firmware Subscribe Mate Rs Subscribe Mate Rs Firmware Subscribe Neo-al00d Subscribe Neo-al00d Firmware Subscribe Nova 2s Subscribe Nova 2s Firmware Subscribe Nova 3 Subscribe Nova 3 Firmware Subscribe Nova 3e Subscribe Nova 3e Firmware Subscribe P20 Subscribe P20 Firmware Subscribe P20 Lite Subscribe P20 Lite Firmware Subscribe Princeton-al10b Subscribe Princeton-al10b Firmware Subscribe Rhone-al00 Subscribe Rhone-al00 Firmware Subscribe Stanford-l09 Subscribe Stanford-l09 Firmware Subscribe Stanford-l09s Subscribe Stanford-l09s Firmware Subscribe Sydney-al00 Subscribe Sydney-al00 Firmware Subscribe Sydney-tl00 Subscribe Sydney-tl00 Firmware Subscribe Sydneym-al00 Subscribe Sydneym-al00 Firmware Subscribe Tony-al00b Subscribe Tony-al00b Firmware Subscribe Tony-tl00b Subscribe Tony-tl00b Firmware Subscribe Y9 2019 Subscribe Y9 2019 Firmware Subscribe Yale-al00a Subscribe Yale-al00a Firmware Subscribe Yale-l21a Subscribe Yale-l21a Firmware Subscribe Yale-tl00b Subscribe Yale-tl00b Firmware Subscribe
Netapp Subscribe	A220 Subscribe A220 Firmware Subscribe A320 Subscribe A320 Firmware Subscribe A800 Subscribe A800 Firmware Subscribe Aff Baseboard Management Controller Subscribe Aff Baseboard Management Controller Firmware Subscribe C190 Subscribe C190 Firmware Subscribe Cloud Backup Subscribe Data Availability Services Subscribe Fas2720 Subscribe Fas2720 Firmware Subscribe Fas2750 Subscribe Fas2750 Firmware Subscribe H300s Subscribe H300s Firmware Subscribe H410c Subscribe H410c Firmware Subscribe H410s Subscribe H410s Firmware Subscribe H500s Subscribe H500s Firmware Subscribe H610s Subscribe H610s Firmware Subscribe H700s Subscribe H700s Firmware Subscribe Hci Management Node Subscribe Service Processor Subscribe Solidfire Subscribe Solidfire Baseboard Management Controller Subscribe Solidfire Baseboard Management Controller Firmware Subscribe Steelstore Cloud Integrated Storage Subscribe

Advisories

Source	ID	Title
Debian DLA	DLA-2068-1	linux security update
Debian DLA	DLA-2114-1	linux-4.9 security update
Ubuntu USN	USN-4186-1	Linux kernel vulnerabilities

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://packetstormsecurity.com/files/154911/Android-Binder-Use-After-Free.html
http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html
http://packetstormsecurity.com/files/156495/Android-Binder-Use-After-Free.html
http://seclists.org/fulldisclosure/2019/Oct/38
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-binder-en
https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html
https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html
https://nvd.nist.gov/vuln/detail/CVE-2019-2215
https://seclists.org/bugtraq/2019/Nov/11
https://security.netapp.com/advisory/ntap-20191031-0005/
https://source.android.com/security/bulletin/2019-10-01
https://usn.ubuntu.com/4186-1/
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-2215
https://www.cve.org/CVERecord?id=CVE-2019-2215

History

Wed, 22 Oct 2025 00:15:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-2215

Tue, 21 Oct 2025 20:30:00 +0000

Type	Values Removed	Values Added
References	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-2215

Tue, 21 Oct 2025 19:30:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-2215

Tue, 15 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.43001}`	epss `{'score': 0.45285}`

Sat, 12 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.4241}`	epss `{'score': 0.43001}`

Fri, 07 Feb 2025 14:15:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2021-11-03'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 14 Aug 2024 00:30:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: google_android

Published: 2019-10-11T18:16:48.000Z

Updated: 2025-10-21T23:45:29.242Z

Reserved: 2018-12-10T00:00:00.000Z

Link: CVE-2019-2215

Vulnrichment

Updated: 2024-08-04T18:42:50.933Z

NVD

Status : Analyzed

Published: 2019-10-11T19:15:10.947

Modified: 2025-10-24T14:11:31.703

Link: CVE-2019-2215

Redhat

Severity : Moderate

Publid Date: 2019-10-16T00:00:00Z

Links: CVE-2019-2215 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation active

Automatable no

Technical Impact total

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object