Filtered by vendor Samsung
Subscriptions
Filtered by product Android
Subscriptions
Total
327 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-21493 | 1 Samsung | 1 Android | 2025-02-12 | 6.8 Medium |
| Improper access control vulnerability in SemShareFileProvider prior to SMR May-2023 Release 1 allows local attackers to access protected data. | ||||
| CVE-2023-21491 | 1 Samsung | 1 Android | 2025-02-12 | 8.5 High |
| Improper access control vulnerability in ThemeManager prior to SMR May-2023 Release 1 allows local attackers to write arbitrary files with system privilege. | ||||
| CVE-2023-21490 | 1 Samsung | 1 Android | 2025-02-12 | 4.7 Medium |
| Improper access control in GearManagerStub prior to SMR May-2023 Release 1 allows a local attacker to delete applications installed by watchmanager. | ||||
| CVE-2023-21489 | 1 Samsung | 1 Android | 2025-02-12 | 7.1 High |
| Heap out-of-bounds write vulnerability in bootloader prior to SMR May-2023 Release 1 allows a physical attacker to execute arbitrary code. | ||||
| CVE-2023-21488 | 1 Samsung | 1 Android | 2025-02-12 | 4.4 Medium |
| Improper access control vulnerablility in Tips prior to SMR May-2023 Release 1 allows local attackers to launch arbitrary activity in Tips. | ||||
| CVE-2023-21487 | 1 Samsung | 1 Android | 2025-02-12 | 5.1 Medium |
| Improper access control vulnerability in Telephony framework prior to SMR May-2023 Release 1 allows local attackers to change a call setting. | ||||
| CVE-2025-20907 | 1 Samsung | 1 Android | 2025-02-12 | 6 Medium |
| Improper privilege management in Samsung Find prior to SMR Feb-2025 Release 1 allows local privileged attackers to disable Samsung Find. | ||||
| CVE-2025-20905 | 1 Samsung | 1 Android | 2025-02-12 | 6.3 Medium |
| Out-of-bounds read and write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to read and write out-of-bounds memory. | ||||
| CVE-2025-20904 | 1 Samsung | 1 Android | 2025-02-12 | 6.3 Medium |
| Out-of-bounds write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to cause memory corruption. | ||||
| CVE-2025-20889 | 1 Samsung | 1 Android | 2025-02-12 | 5.3 Medium |
| Out-of-bounds read in decoding malformed bitstream for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability. | ||||
| CVE-2025-20888 | 1 Samsung | 1 Android | 2025-02-12 | 7 High |
| Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability. | ||||
| CVE-2025-20887 | 1 Samsung | 1 Android | 2025-02-12 | 5.3 Medium |
| Out-of-bounds read in accessing table used for svp8t in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability. | ||||
| CVE-2025-20884 | 1 Samsung | 1 Android | 2025-02-12 | 4.6 Medium |
| Improper access control in Samsung Message prior to SMR Jan-2025 Release 1 allows physical attackers to access data across multiple user profiles. | ||||
| CVE-2025-20883 | 1 Samsung | 1 Android | 2025-02-12 | 4.6 Medium |
| Improper access control in SoundPicker prior to SMR Jan-2025 Release 1 allows physical attackers to access data across multiple user profiles. | ||||
| CVE-2025-20882 | 1 Samsung | 1 Android | 2025-02-12 | 7 High |
| Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability. | ||||
| CVE-2025-20881 | 1 Samsung | 1 Android | 2025-02-12 | 7 High |
| Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability. | ||||
| CVE-2024-49411 | 1 Samsung | 1 Android | 2025-02-10 | 4.3 Medium |
| Path Traversal in ThemeCenter prior to SMR Dec-2024 Release 1 allows physical attackers to copy apk files to arbitrary path with ThemeCenter privilege. | ||||
| CVE-2023-52432 | 1 Samsung | 1 Android | 2025-02-10 | 5.9 Medium |
| Improper input validation in IpcTxSndSetLoopbackCtrl in libsec-ril prior to SMR Sep-2023 Release 1 allows local attackers to write out-of-bounds memory. | ||||
| CVE-2024-20885 | 1 Samsung | 1 Android | 2025-02-10 | 5.1 Medium |
| Improper component protection vulnerability in Samsung Dialer prior to SMR May-2024 Release 1 allows local attackers to make a call without proper permission. | ||||
| CVE-2024-20884 | 1 Samsung | 1 Android | 2025-02-10 | 6.2 Medium |
| Incorrect use of privileged API vulnerability in getSemBatteryUsageStats in BatteryStatsService prior to SMR Jun-2024 Release 1 allows local attackers to use privileged API. | ||||