Unrated severityCISA KEVNVD Advisory· Published Sep 12, 2019· Updated Oct 21, 2025

CVE-2019-16256

Description

Some Samsung devices include the SIMalliance Toolbox Browser (aka S@T Browser) on the UICC, which might allow remote attackers to retrieve location and IMEI information, or retrieve other data or execute certain commands, via SIM Toolkit (STK) instructions in an SMS message, aka Simjacker.

Affected products

Samsung/SIMalliance Toolbox Browserdescription

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.adaptivemobile.com/blog/simjacker-next-generation-spying-over-mobilemitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.049
exploit	0.000
kev	0.120
patch	0.000
ransomware	0.000