CVE-2019-16256
SIMalliance Toolbox Browser Command Injection Vulnerability
CVSS
—
No CVSS
EPSS
4.9%
p91
KEV
YES
Nov 3, 2021
Exploit Today
77
0-100
Published: — · Last modified: —
4.9%EPSS · 30 days4.9%
2026-06-302026-07-17
Product
SIMalliance / Toolbox Browser
Vulnerability
SIMalliance Toolbox Browser Command Injection Vulnerability
Added to KEV
Nov 3, 2021
Remediate by
May 3, 2022
Known ransomware use
No
Summary description
SIMalliance Toolbox Browser contains an command injection vulnerability that could allow remote attackers to retrieve location and IMEI information or execute a range of other attacks by modifying the attack message.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-16256
No related CVEs by CWE or product.