Lucene search
K

1281 matches found

CNNVD
CNNVD
added 2026/03/16 12:0 a.m.7 views

SAMSUNG Settings 安全漏洞

SAMSUNG Settings is a setting service provided by Samsung Electronics of South Korea. Versions of SAMSUNG Settings prior to SMR Mar-2026 Release 1 contained security vulnerabilities. These vulnerabilities stemmed from improper intent verification by the broadcast receiver, which could allow local...

6.8CVSS5.9AI score0.00082EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.8 views

SAMSUNG Secure Folder 安全漏洞

Samsung Secure Folder is a privacy protection software developed by South Korea’s Samsung Corporation. Versions of Samsung Secure Folder prior to the SMR Mar-2026 Release 1 had security vulnerabilities. These vulnerabilities stemmed from improper export of Android application components, which...

8.4CVSS5.9AI score0.00159EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.12 views

PT-2026-25595

Improper export of android application components in Secure Folder prior to SMR Mar-2026 Release 1 allows local attackers to launch arbitrary activity with Secure Folder privilege...

8.4CVSS5.9AI score0.00159EPSS
Exploits0References1
OSV
OSV
added 2026/03/02 7:16 p.m.7 views

CVE-2024-31328

In broadcastIntentLockedTraced of BroadcastController.java, there is a possible way to launch arbitrary activities from the background on the paired companion phone due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed...

8.8CVSS6AI score0.00115EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/02 7:2 p.m.4 views

CVE-2024-31328

In broadcastIntentLockedTraced of BroadcastController.java, there is a possible way to launch arbitrary activities from the background on the paired companion phone due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed...

6.2AI score0.00115EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/02 7:2 p.m.7 views

CVE-2024-31328

In broadcastIntentLockedTraced of BroadcastController.java, there is a possible way to launch arbitrary activities from the background on the paired companion phone due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed...

8.8CVSS6.2AI score0.00115EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/03/02 7:2 p.m.5 views

EUVD-2024-29224

In broadcastIntentLockedTraced of BroadcastController.java, there is a possible way to launch arbitrary activities from the background on the paired companion phone due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed...

8.8CVSS6.2AI score0.00115EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/02 7:2 p.m.33 views

CVE-2024-31328

In broadcastIntentLockedTraced of BroadcastController.java, there is a possible way to launch arbitrary activities from the background on the paired companion phone due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed...

0.00115EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.7 views

PT-2026-22687

Name of the Vulnerable Software and Affected Versions Versions prior to the fix for CVE-2024-31328 Description A logic error exists in the broadcastIntentLockedTraced function within BroadcastController.java that may allow for the launching of arbitrary activities from the background on a paired...

8.8CVSS6.2AI score0.00115EPSS
Exploits0References7
OSV
OSV
added 2026/02/24 6:39 p.m.5 views

CVE-2026-3105 SQL Injection in Contact Activity API Sorting

SummaryThis advisory addresses a SQL injection vulnerability in the API endpoint used for retrieving contact activities. A vulnerability exists in the query construction for the Contact Activity timeline where the parameter responsible for determining the sort direction was not strictly validated...

7.6CVSS6.2AI score0.00289EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/24 12:0 a.m.8 views

Mautic 安全漏洞

Mautic is an open-source marketing automation software developed by Mautic. This software can monitor and manage websites, send emails, and manage customer resources. Mautic has a security vulnerability, which stems from SQL injections in the API endpoints used for retrieving contact activities...

8.8CVSS6AI score0.00289EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/04 7:27 p.m.7 views

CVE-2026-24774

The Open eClass platform formerly known as GUnet eClass is a complete course management system. Prior to version 4.2, a business logic vulnerability allows authenticated students to improperly mark themselves as present in attendance activities, including activities that have already expired, by...

4.3CVSS5.4AI score0.00201EPSS
Exploits1References1
OSV
OSV
added 2026/02/04 7:15 a.m.3 views

CVE-2026-20979

Improper privilege management in Settings prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Settings privilege...

7.8CVSS5.9AI score0.00129EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/04 6:14 a.m.3 views

CVE-2026-20983

Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Samsung Dialer privilege...

8.4CVSS5.5AI score0.00129EPSS
Exploits0References1
CVE
CVE
added 2026/02/04 6:14 a.m.16 views

CVE-2026-20983

Samsung Dialer (Android) is affected by CVE-2026-20983 due to improper export of Android application components, enabling a local attacker to launch arbitrary activities with Samsung Dialer privileges. Affected software is Samsung Dialer prior to SMR Feb-2026 Release 1. The vulnerability is local...

8.4CVSS5.5AI score0.00129EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/02/04 6:14 a.m.31 views

CVE-2026-20983

Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Samsung Dialer privilege...

8.4CVSS0.00129EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/04 6:14 a.m.4 views

CVE-2026-20979

Improper privilege management in Settings prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Settings privilege...

8.4CVSS5.5AI score0.00129EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.8 views

SAMSUNG Dialer 安全漏洞

Samsung Dialer is a dialer application developed by South Korea’s Samsung Corporation. Versions of the Samsung Dialer prior to SMR Feb-2026 Release 1 contained security vulnerabilities. These vulnerabilities stemmed from improper export of Android application components, potentially allowing loca...

8.4CVSS5.9AI score0.00129EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.10 views

PT-2026-6093

Name of the Vulnerable Software and Affected Versions Samsung Dialer versions prior to SMR Feb-2026 Release 1 Description A flaw exists due to the improper export of Android application components in Samsung Dialer. This allows a local attacker to launch arbitrary activity with Samsung Dialer...

8.4CVSS5.6AI score0.00129EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.14 views

SAMSUNG Members 安全漏洞

Samsung Members is a community platform app developed by South Korea’s Samsung Corporation. Versions of Samsung Members prior to 5.6.00.11 contained security vulnerabilities. These vulnerabilities stemmed from improper input validation, potentially allowing remote attackers to connect to arbitrar...

7CVSS6.1AI score0.00276EPSS
Exploits0References2
Rows per page
Query Builder