8 matches found
A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain
Posted by Maddie Stone, Project Zero Note: The three vulnerabilities discussed in this blog were all fixed in Samsung’s March 2021 release. They were fixed as CVE-2021-25337, CVE-2021-25369, CVE-2021-25370. To ensure your Samsung device is up-to-date under settings you can check that your device ...
SAMSUNG Mobile devices 安全漏洞
Samsung SMR is a system firmware from Samsung South Korea. It provides storage for system applications. A security vulnerability exists in SMR MAR-2021 Release 1, which stems from an improper access control vulnerability that exposes sensitive kernel information to user space. No detailed...
PT-2021-16562 · Samsung · Samsung Mobile Devices
Name of the Vulnerable Software and Affected Versions: Samsung Mobile Devices versions prior to SMR Mar-2021 Release 1 Description: A vulnerability in the DSP driver allows attackers to load arbitrary ELF libraries inside the DSP. This issue affects Samsung Mobile Devices. Recommendations: For...
Cisco IOS XE SD-WAN Software Arbitrary Command Execution Vulnerability
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected device as a low-privileged user to exploit this...
Samsung mobile devices 安全漏洞
Samsung mobile devices is a cell phone application from Samsung South Korea. It provides a communication function. A security vulnerability exists in Samsung mobile devices prior to SMR Mar-2021 Release 1, which stems from improper access control of NotificationManagerService, and can be exploite...
SAMSUNG Mobile devices 安全漏洞
Samsung mobile devices is a cell phone application from Samsung Samsung, South Korea. It provides a communication function. An access control error vulnerability exists in Samsung mobile devices SMR prior to Mar-2021 Release 1. The vulnerability stems from an access control error in the clipboard...
Samsung mobile devices 安全漏洞
Samsung mobile devices is a cell phone application from Samsung South Korea. It provides a communication function. A security vulnerability exists in Samsung mobile devices prior to SMR Mar-2021 Release 1, which stems from an incorrect lock screen status check. No details of the vulnerability are...
PT-2020-6818 · Samsung · Samsung Mobile Devices
Name of the Vulnerable Software and Affected Versions: Samsung Mobile Devices versions prior to SMR Mar-2021 Release 1 Description: The issue is related to improper access control in the clipboard service of Samsung mobile devices. This allows untrusted applications to read or write certain local...