30 matches found
CVE-2021-25396
An improper input validation vulnerability in NPU firmware prior to SMR MAY-2021 Release 1 allows arbitrary memory write and code execution...
CVE-2021-25395
A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised...
CVE-2021-25388
Improper caller check vulnerability in Knox Core prior to SMR MAY-2021 Release 1 allows attackers to install arbitrary app...
CVE-2021-25390
Intent redirection vulnerability in PhotoTable prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action...
CVE-2021-25387
An improper input validation vulnerability in sflacfdgetfrm in libsflacextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process...
CVE-2021-25385
An improper input validation vulnerability in sdfffdparsechunkPROP in libsdffextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process...
CVE-2021-25389
Improper running task check in S Secure prior to SMR MAY-2021 Release 1 allows attackers to use locked app without authentication...
CVE-2021-25391
Intent redirection vulnerability in Secure Folder prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action...
CVE-2021-25393
Improper sanitization of incoming intent in SecSettings prior to SMR MAY-2021 Release 1 allows local attackers to get permissions to access system uid data...
CVE-2021-25383
An improper input validation vulnerability in scmnmfalread in libsapeextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process...
CVE-2021-25394
A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows arbitrary write given a radio privilege is compromised...
Input validation
Improper running task check in S Secure prior to SMR MAY-2021 Release 1 allows attackers to use locked app without authentication...
Input validation
An improper input validation vulnerability in sdfffdparsechunkFVER in libsdffextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process...
Input validation
An improper input validation vulnerability in sflacfdgetfrm in libsflacextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process...
Input validation
Improper caller check vulnerability in Knox Core prior to SMR MAY-2021 Release 1 allows attackers to install arbitrary app...
CVE-2021-25391
Intent redirection vulnerability in Secure Folder prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action...
CVE-2021-25394
CVE-2021-25394 is a race-condition-based use-after-free vulnerability in Samsung Mobile Devices’ MFC charger driver, prior to SMR MAY-2021 Release 1. The issue enables arbitrary writes after a radio privilege is compromised, with local attack vector and partial integrity/availability impact per C...
CVE-2021-25384
An improper input validation vulnerability in sdfffdparsechunkPROP with Sample Rate Chunk in libsdffextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process...
CVE-2021-25385
The CVE-2021-25385 entry concerns an input-validation flaw in the libsdffextractor library, specifically in the sdfffd_parse_chunk_PROP() function, which can lead to remote arbitrary code execution on the mediaextractor process. Connected sources confirm the issue affects SamsungLibsdffextractor ...
CVE-2021-25387
The CVE-2021-25387 issue affects Samsung’s libsflacextractor library, specifically the sflacfd_get_frm() function. The root cause is improper input validation in sflacfd_get_frm(), which can lead to arbitrary code execution in the mediaextractor process. Affected software is the libsflacextractor...