15 matches found
CVE-2023-31115
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. Incorrect resource transfer between spheres can cause changes to the activation mode of RCS via a crafted application...
EUVD-2023-35441
Malicious code in bioql PyPI...
EUVD-2023-35442
Malicious code in bioql PyPI...
CVE-2023-21149
In registerGsmaServiceIntentReceiver of ShannonRcsService.java, there is a possible way to activate/deactivate RCS service due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
CVE-2023-21149
In registerGsmaServiceIntentReceiver of ShannonRcsService.java, there is a possible way to activate/deactivate RCS service due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
CVE-2023-31114
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. Incorrect resource transfer between spheres can cause unintended querying of the SIM status via a crafted application...
CVE-2023-31116
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. An incorrect default permission can cause unintended querying of RCS capability via a crafted application...
Code injection
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. Incorrect resource transfer between spheres can cause unintended querying of the SIM status via a crafted application...
Default configuration
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. An incorrect default permission can cause unintended querying of RCS capability via a crafted application...
CVE-2023-31114
The CVE affects Samsung Exynos Modem 5123 and 5300 (Shannon RCS). Root cause: incorrect resource transfer between spheres allowing crafted apps to query SIM status. Impact: confidentiality and integrity at High; impact on availability not indicated. Exploitation details are not provided in the do...
CVE-2023-31114
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. Incorrect resource transfer between spheres can cause unintended querying of the SIM status via a crafted application...
CVE-2023-31115
The issue (CVE-2023-31115) affects Samsung Exynos Modem versions 5123–5300, specifically the Shannon RCS component. A vulnerability arises from incorrect resource transfer between spheres, which can cause changes to the activation mode of RCS when a crafted application is used. Concrete impact an...
CVE-2023-31116
CVE-2023-31116 affects Samsung Exynos Modem Shannon RCS component (versions 5123–5300). The issue is an incorrect default permission that can enable unintended querying of RCS capability via a crafted application, with high impact on confidentiality, integrity, and availability. No public exploit...
PT-2023-23160 · Samsung · Samsung Exynos Modem
Name of the Vulnerable Software and Affected Versions: Samsung Exynos Modem versions 5123 through 5300 Description: An issue was discovered in the Shannon RCS component. An incorrect default permission can cause unintended querying of RCS capability via a crafted application. Recommendations: For...
PT-2022-14401 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a missing permission check in the onbind method of ShannonRcsService.java. This could lead to local information disclosure without requiring additional execution privileges. User interaction...