Lucene search
K

6 matches found

Packet Storm
Packet Storm
added 2026/02/09 12:0 a.m.164 views

📄 Samsung Quram DNG Heap Corruption

Samsung devices utilize Quram's DNG decoder. A malformed ScalePerColumn opcode with oversized areaSpec and extreme pitches leads to arithmetic overflow in the per-column scaling loop. After allocation miscalculation, subsequent writes corrupt heap structures. Carefully crafted payloads enable...

9.8CVSS5.6AI score0.01435EPSS
Exploits3
Packet Storm
Packet Storm
added 2026/02/09 12:0 a.m.271 views

📄 Samsung Quram DNG Remote Code Execution

A vulnerability exists in Samsung's image decoding library libimagecodec.quram.so responsible for parsing Digital Negatives DNG. A malformed DNG containing oversized IFD entries can cause heap corruption. With precise heap grooming, this condition may lead to remote code execution when the...

9.8CVSS6.4AI score0.01435EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/12/02 12:0 a.m.224 views

📄 Android 13 Quram DNG Codec Memory Corruption

An out-of-bounds read/write vulnerability in Samsung's Quram image codec library libimagecodec.quram.so is triggered when the library processes a maliciously crafted image file, causing memory access outside the intended buffer boundaries...

7.5CVSS7.1AI score0.00274EPSS
Exploits2
CNNVD
CNNVD
added 2022/04/11 12:0 a.m.4 views

Samsung quram缓冲区错误漏洞

Samsung SMR is a system patch package from Samsung South Korea. A denial of service vulnerability exists in versions prior to Samsung SMR Apr-2022 Release 1, which stems from incorrect boundary checking in the Quram Agif library and can be exploited by attackers to cause a denial of service via a...

5.5CVSS5.6AI score0.00267EPSS
Exploits0References2
CNVD
CNVD
added 2021/03/05 12:0 a.m.6 views

Samsung quram code execution vulnerability

Samsung quram is a cell phone application from Samsung South Korea. It provides a translation function. A security vulnerability exists in the quram library version prior to SMR Jan-2021 Release 1, which can be exploited by an attacker to overwrite arbitrary memory and allow arbitrary code...

9.8CVSS7.4AI score0.01226EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/03/04 12:0 a.m.4 views

三星 Samsung quram 缓冲区错误漏洞

Samsung quram is a cell phone application from Samsung South Korea. It provides a translation function. A security vulnerability exists in the quram library version prior to SMR Jan-2021 Release 1, which can be exploited by an attacker to overwrite arbitrary memory and allow arbitrary code...

9.8CVSS6.1AI score0.01226EPSS
Exploits0References5
Rows per page
Query Builder