Lucene search
K

8 matches found

GoogleProjectZero
GoogleProjectZero
added 2022/11/04 12:0 a.m.70 views

A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain

Posted by Maddie Stone, Project Zero Note: The three vulnerabilities discussed in this blog were all fixed in Samsung’s March 2021 release. They were fixed as CVE-2021-25337, CVE-2021-25369, CVE-2021-25370. To ensure your Samsung device is up-to-date under settings you can check that your device ...

7.8CVSS7.5AI score0.72105EPSS
Exploits27
CNNVD
CNNVD
added 2021/03/26 12:0 a.m.4 views

SAMSUNG Mobile devices 安全漏洞

Samsung SMR is a system firmware from Samsung South Korea. It provides storage for system applications. A security vulnerability exists in SMR MAR-2021 Release 1, which stems from an improper access control vulnerability that exposes sensitive kernel information to user space. No detailed...

6.2CVSS5.5AI score0.01121EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2021/03/26 12:0 a.m.3 views

PT-2021-16562 · Samsung · Samsung Mobile Devices

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Devices versions prior to SMR Mar-2021 Release 1 Description: A vulnerability in the DSP driver allows attackers to load arbitrary ELF libraries inside the DSP. This issue affects Samsung Mobile Devices. Recommendations: For...

7.2CVSS6.9AI score0.00833EPSS
Exploits0References5
Cisco
Cisco
added 2021/03/24 4:0 p.m.64 views

Cisco IOS XE SD-WAN Software Arbitrary Command Execution Vulnerability

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected device as a low-privileged user to exploit this...

7.3CVSS7.3AI score0.0034EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/03/04 12:0 a.m.6 views

Samsung mobile devices 安全漏洞

Samsung mobile devices is a cell phone application from Samsung South Korea. It provides a communication function. A security vulnerability exists in Samsung mobile devices prior to SMR Mar-2021 Release 1, which stems from improper access control of NotificationManagerService, and can be exploite...

4.3CVSS5.1AI score0.00241EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/03/04 12:0 a.m.6 views

SAMSUNG Mobile devices 安全漏洞

Samsung mobile devices is a cell phone application from Samsung Samsung, South Korea. It provides a communication function. An access control error vulnerability exists in Samsung mobile devices SMR prior to Mar-2021 Release 1. The vulnerability stems from an access control error in the clipboard...

7.1CVSS5.6AI score0.02831EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/03/04 12:0 a.m.4 views

Samsung mobile devices 安全漏洞

Samsung mobile devices is a cell phone application from Samsung South Korea. It provides a communication function. A security vulnerability exists in Samsung mobile devices prior to SMR Mar-2021 Release 1, which stems from an incorrect lock screen status check. No details of the vulnerability are...

2.5CVSS5.6AI score0.00111EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2020/11/03 12:0 a.m.3 views

PT-2020-6818 · Samsung · Samsung Mobile Devices

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Devices versions prior to SMR Mar-2021 Release 1 Description: The issue is related to improper access control in the clipboard service of Samsung mobile devices. This allows untrusted applications to read or write certain local...

7.1CVSS6.6AI score0.02831EPSS
Exploits0References17
Rows per page
Query Builder