Filtered by vendor Samsung
Subscriptions
Filtered by product Android
Subscriptions
Total
327 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-30652 | 1 Samsung | 1 Android | 2024-11-21 | 6.7 Medium |
| Out of bounds read and write in callrunTspCmdNoRead of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code. | ||||
| CVE-2023-30651 | 1 Samsung | 1 Android | 2024-11-21 | 6.7 Medium |
| Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code. | ||||
| CVE-2023-30650 | 1 Samsung | 1 Android | 2024-11-21 | 6.7 Medium |
| Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code. | ||||
| CVE-2023-30649 | 1 Samsung | 1 Android | 2024-11-21 | 7.8 High |
| Heap out of bound write vulnerability in RmtUimNeedApdu of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code. | ||||
| CVE-2023-30648 | 1 Samsung | 1 Android | 2024-11-21 | 3.3 Low |
| Stack out-of-bounds write vulnerability in IpcRxImeiUpdateImeiNoti of RILD priro to SMR Jul-2023 Release 1 cause a denial of service on the system. | ||||
| CVE-2023-30647 | 1 Samsung | 1 Android | 2024-11-21 | 7.8 High |
| Heap out of bound write vulnerability in IpcRxUsimPhoneBookCapa of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code. | ||||
| CVE-2023-30646 | 1 Samsung | 1 Android | 2024-11-21 | 7.8 High |
| Heap out of bound write vulnerability in BroadcastSmsConfig of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code. | ||||
| CVE-2023-30645 | 1 Samsung | 1 Android | 2024-11-21 | 7.8 High |
| Heap out of bound write vulnerability in IpcRxIncomingCBMsg of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code. | ||||
| CVE-2023-30643 | 1 Samsung | 1 Android | 2024-11-21 | 7.7 High |
| Missing authentication vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to delete arbitrary non-preloaded applications. | ||||
| CVE-2023-30642 | 1 Samsung | 1 Android | 2024-11-21 | 6.2 Medium |
| Improper privilege management vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to call privilege function. | ||||
| CVE-2023-30641 | 1 Samsung | 1 Android | 2024-11-21 | 4.3 Medium |
| Improper access control vulnerability in Settings prior to SMR Jul-2023 Release 1 allows physical attacker to use restricted user profile to access device owner's google account data. | ||||
| CVE-2023-30640 | 1 Samsung | 1 Android | 2024-11-21 | 4.3 Medium |
| Improper access control vulnerability in PersonaManagerService prior to SMR Jul-2023 Release 1 allows local attackers to change confiugration. | ||||
| CVE-2023-21512 | 1 Samsung | 1 Android | 2024-11-21 | 2.4 Low |
| Improper Knox ID validation logic in notification framework prior to SMR Jun-2023 Release 1 allows local attackers to read work profile notifications without proper access permission. | ||||
| CVE-2023-21461 | 1 Samsung | 1 Android | 2024-11-21 | 4 Medium |
| Improper authorization vulnerability in AutoPowerOnOffConfirmDialog in Settings prior to SMR Mar-2023 Release 1 allows local attacker to turn device off via unprotected activity. | ||||
| CVE-2024-34662 | 1 Samsung | 1 Android | 2024-11-15 | 6.2 Medium |
| Improper access control in ActivityManager prior to SMR Oct-2024 Release 1 in select Android 12, 13 and SMR Sep-2024 Release 1 in select Android 14 allows local attackers to execute privileged behaviors. | ||||
| CVE-2024-34673 | 1 Samsung | 1 Android | 2024-11-13 | 4.1 Medium |
| Improper Input Validation in IpcProtocol in Modem prior to SMR Nov-2024 Release 1 allows local attackers to cause Denial-of-Service. | ||||
| CVE-2024-34682 | 1 Samsung | 1 Android | 2024-11-13 | 2.4 Low |
| Improper authorization in Settings prior to SMR Nov-2024 Release 1 allows physical attackers to access stored WiFi password in Maintenance Mode. | ||||
| CVE-2024-49404 | 1 Samsung | 2 Android, Video Player | 2024-11-13 | 5.5 Medium |
| Improper Access Control in Samsung Video Player prior to versions 7.3.29.1 in Android 12, 7.3.36.1 in Android 13, and 7.3.41.230 in Android 14 allows physical attackers to access video file of other users. | ||||
| CVE-2024-49401 | 1 Samsung | 1 Android | 2024-11-12 | 5.1 Medium |
| Improper input validation in Settings Suggestions prior to SMR Nov-2024 Release 1 allows local attackers to launch privileged activities. | ||||
| CVE-2024-34679 | 1 Samsung | 1 Android | 2024-11-12 | 4 Medium |
| Incorrect default permissions in Crane prior to SMR Nov-2024 Release 1 allows local attackers to access files with phone privilege. | ||||