A possible heap-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code...
7.2CVSS
7.4AI Score
0.001EPSS
A lack of replay attack protection in GUTI REALLOCATION COMMAND message process in Qualcomm modem prior to SMR Oct-2021 Release 1 can lead to remote denial of service on mobile network...
7.5CVSS
7.4AI Score
0.001EPSS
Exposure of information vulnerability in ipcdump prior to SMR Oct-2021 Release 1 allows an attacker detect device information via analyzing packet in...
3.3CVSS
4.1AI Score
0.0004EPSS
An improper input validation vulnerability in loading graph file in DSP driver prior to SMR Sep-2021 Release 1 allows attackers to perform permanent denial of service on the...
5.5CVSS
5.4AI Score
0.0004EPSS
An improper length check in APAService prior to SMR Sep-2021 Release 1 results in stack based Buffer...
7.8CVSS
7.5AI Score
0.0004EPSS
A PendingIntent hijacking in NetworkPolicyManagerService prior to SMR Sep-2021 Release 1 allows attackers to get IMSI...
3.3CVSS
4.3AI Score
0.0005EPSS
Some improper access control in Bluetooth APIs prior to SMR Sep-2021 Release 1 allows untrusted application to get Bluetooth...
5.5CVSS
5.5AI Score
0.0004EPSS
NULL pointer dereference vulnerability in NPU driver prior to SMR Sep-2021 Release 1 allows attackers to cause memory...
5.5CVSS
5.4AI Score
0.0004EPSS
NULL pointer dereference vulnerability in ION driver prior to SMR Sep-2021 Release 1 allows attackers to cause memory...
5.5CVSS
5.4AI Score
0.0004EPSS
An improper access control vulnerability in sspExit() in BlockchainTZService prior to SMR Sep-2021 Release 1 allows attackers to terminate...
5.5CVSS
5.5AI Score
0.0004EPSS
OOB read vulnerability in libsaviextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to access arbitrary address through pointer via forged avi...
3.3CVSS
4.4AI Score
0.0005EPSS
An improper input validation vulnerability in libsapeextractor library prior to SMR Sep-2021 Release 1 allows attackers to execute arbitrary code in mediaextractor...
9.8CVSS
9.6AI Score
0.001EPSS
Path traversal vulnerability in FactoryAirCommnadManger prior to SMR Sep-2021 Release 1 allows attackers to write file as system uid via remote...
6.5CVSS
6.5AI Score
0.0005EPSS
OOB read vulnerability in libswmfextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute memcpy at arbitrary address via forged wmf...
5.5CVSS
5.7AI Score
0.0005EPSS
An improper input validation vulnerability in DSP driver prior to SMR Sep-2021 Release 1 allows local attackers to get a limited kernel memory...
3.3CVSS
4.1AI Score
0.0004EPSS
OOB read vulnerability in libsaacextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute remote DoS via forged aac...
5.5CVSS
5.7AI Score
0.0005EPSS
An improper access control vulnerability in sspInit() in BlockchainTZService prior to SMR Sep-2021 Release 1 allows attackers to start...
5.5CVSS
5.5AI Score
0.0004EPSS
An IV reuse vulnerability in keymaster prior to SMR AUG-2021 Release 1 allows decryption of custom keyblob with privileged...
5.5CVSS
5.9AI Score
0.0004EPSS
A use after free vulnerability in conn_gadget driver prior to SMR AUG-2021 Release 1 allows malicious action by an...
5.3CVSS
5.4AI Score
0.0004EPSS
Improper access control vulnerability in Bluetooth application prior to SMR July-2021 Release 1 allows untrusted application to access the Bluetooth information in Bluetooth...
4.3CVSS
4.5AI Score
0.0005EPSS
Improper component protection vulnerability in SmsViewerActivity of Samsung Message prior to SMR July-2021 Release 1 allows untrusted applications to access Message...
7.5CVSS
7.4AI Score
0.001EPSS
Improper privilege management vulnerability in Bluetooth application prior to SMR July-2021 Release 1 allows untrusted application to access the Bluetooth information in Bluetooth...
4.3CVSS
4.5AI Score
0.0005EPSS
SQL injection vulnerability in Bluetooth prior to SMR July-2021 Release 1 allows unauthorized access to paired device...
6.5CVSS
6.6AI Score
0.0005EPSS
Improper validation check vulnerability in PackageManager prior to SMR July-2021 Release 1 allows untrusted applications to get dangerous level permission without user confirmation in limited...
7.8CVSS
7.5AI Score
0.0004EPSS
A possible buffer overflow vulnerability in NPU driver prior to SMR JUN-2021 Release 1 allows arbitrary memory write and code...
7.8CVSS
8AI Score
0.0004EPSS
Improper address validation vulnerability in RKP api prior to SMR JUN-2021 Release 1 allows root privileged local attackers to write read-only kernel...
4.4CVSS
4.5AI Score
0.0004EPSS
A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows arbitrary write given a radio privilege is...
An improper input validation vulnerability in sdfffd_parse_chunk_FVER() in libsdffextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor...
9.8CVSS
9.6AI Score
0.001EPSS
An improper input validation vulnerability in sdfffd_parse_chunk_PROP() with Sample Rate Chunk in libsdffextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor...
9.8CVSS
9.6AI Score
0.001EPSS
An improper input validation vulnerability in scmn_mfal_read() in libsapeextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor...
9.8CVSS
9.6AI Score
0.001EPSS
Intent redirection vulnerability in PhotoTable prior to SMR MAY-2021 Release 1 allows attackers to execute privileged...
4CVSS
5.8AI Score
0.001EPSS
An improper access control vulnerability in TelephonyUI prior to SMR MAY-2021 Release 1 allows local attackers to write arbitrary files of telephony process via untrusted...
5.5CVSS
6.2AI Score
0.0004EPSS
Improper sanitization of incoming intent in Samsung Contacts prior to SMR JUN-2021 Release 1 allows local attackers to copy or overwrite arbitrary files with Samsung Contacts...
7.8CVSS
7.5AI Score
0.0004EPSS
Improper sanitization of incoming intent in Samsung Contacts prior to SMR JUN-2021 Release 1 allows local attackers to get permissions to access arbitrary data with Samsung Contacts...
5.5CVSS
5.5AI Score
0.0004EPSS
An improper input validation vulnerability in sflacfd_get_frm() in libsflacextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor...
10CVSS
9.6AI Score
0.001EPSS
Improper protection of backup path configuration in Samsung Dex prior to SMR MAY-2021 Release 1 allows local attackers to get sensitive information via changing the...
5.5CVSS
6AI Score
0.0004EPSS
Improper running task check in S Secure prior to SMR MAY-2021 Release 1 allows attackers to use locked app without...
6.1CVSS
6.2AI Score
0.0005EPSS
An improper input validation vulnerability in NPU firmware prior to SMR MAY-2021 Release 1 allows arbitrary memory write and code...
6.7CVSS
6.9AI Score
0.0004EPSS
A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is...
A possible out of bounds write vulnerability in NPU driver prior to SMR JUN-2021 Release 1 allows arbitrary memory...
7.8CVSS
7.7AI Score
0.0004EPSS
Improper access in Notification setting prior to SMR JUN-2021 Release 1 allows physically proximate attackers to set arbitrary notification via physically configuring...
2.4CVSS
4.3AI Score
0.0005EPSS
Assuming EL1 is compromised, an improper address validation in RKP prior to SMR JUN-2021 Release 1 allows local attackers to remap EL2 memory as...
5.5CVSS
5.4AI Score
0.0004EPSS
Assuming EL1 is compromised, an improper address validation in RKP prior to SMR JUN-2021 Release 1 allows local attackers to create executable kernel page outside code...
6.5CVSS
6.3AI Score
0.0004EPSS
Improper caller check vulnerability in Knox Core prior to SMR MAY-2021 Release 1 allows attackers to install arbitrary...
7.1CVSS
7.3AI Score
0.0004EPSS
Improper sanitization of incoming intent in SecSettings prior to SMR MAY-2021 Release 1 allows local attackers to get permissions to access system uid...
5.5CVSS
6.7AI Score
0.0004EPSS
Improper authorization in SDP SDK prior to SMR JUN-2021 Release 1 allows access to internal...
7.5CVSS
7.4AI Score
0.001EPSS
An improper input validation vulnerability in sdfffd_parse_chunk_PROP() in libsdffextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor...
9.8CVSS
9.6AI Score
0.001EPSS
Intent redirection vulnerability in Secure Folder prior to SMR MAY-2021 Release 1 allows attackers to execute privileged...
4CVSS
5.7AI Score
0.001EPSS
Improper access control of a component in CallBGProvider prior to SMR JUN-2021 Release 1 allows local attackers to access arbitrary files with an escalated...
7.1CVSS
6.8AI Score
0.0004EPSS
An improper access control vulnerability in genericssoservice prior to SMR JUN-2021 Release 1 allows local attackers to execute protected activity with system privilege via untrusted...
7.8CVSS
7.6AI Score
0.0004EPSS