CVE-2017-18654

An issue was discovered on Samsung mobile devices with M6.0 and N7.0, 7.1 software. An unauthenticated attacker can register a new security certificate. The Samsung ID is SVE-2017-9659 September 2017...

CVE-2016-11036

An issue was discovered on Samsung mobile devices with M6.0 software. There is a Factory Reset Protection FRP bypass. The Samsung ID is SVE-2016-6008 August 2016...

CVE-2017-18652

An issue was discovered on Samsung mobile devices with M6.0 and N7.x software. SVoice allows arbitrary code execution by changing dynamic libraries. The Samsung ID is SVE-2017-9299 September 2017...

CVE-2018-21067

An issue was discovered on Samsung mobile devices with M6.0 software. There is an information disclosure in a Trustlet because an address is logged. The Samsung ID is SVE-2018-11600 July 2018...

CVE-2018-21083

An issue was discovered on Samsung mobile devices with M6.0, N7.x, and O8.0 Exynos or Qualcomm chipsets software. There is information disclosure of a kernel address via trustonictee. The Samsung ID is SVE-2017-11175 February 2018...

CVE-2017-18675

An issue was discovered on Samsung mobile devices with M6.0 and N7.x Exynos7420 or Exynox8890 chipsets software. The Camera application can leak uninitialized memory via ion. The Samsung ID is SVE-2016-6989 April 2017...

CVE-2017-18670

An issue was discovered on Samsung mobile devices with KK4.4, L5.0/5.1, and M6.0 software. android.intent.action.SIOPLEVELCHANGED allows a serializable intent reboot. The Samsung ID is SVE-2017-8363 May 2017...

CVE-2017-18668

An issue was discovered on Samsung mobile devices with M6.0 software. Attackers can prevent users from making outbound calls and sending outbound text messages. The Samsung ID is SVE-2017-8706 June 2017...

CVE-2017-18657

An issue was discovered on Samsung mobile devices with M6.0 and N7.x software. There is an arbitrary write in a trustlet. The Samsung ID is SVE-2017-8893 August 2017...

CVE-2017-18662

An issue was discovered on Samsung mobile devices with M6.0 and N7.x software. Data outside of the rkp log buffer boundary is read, causing an information leak. The Samsung ID is SVE-2017-9109 July 2017...

CVE-2016-11033

An issue was discovered on Samsung mobile devices with M6.0 software. There is a heap-based buffer overflow in tlcserver. The Samsung IDs are SVE-2016-7220 and SVE-2016-7225 November 2016...

CVE-2017-18692

An issue was discovered on Samsung mobile devices with M6.0 and N7.0 MSM8939, MSM8996, MSM8998, Exynos7580, Exynos8890, or Exynos8895 chipsets software. There is a race condition, with a resultant buffer overflow, in the sects touchscreen sysfs interface. The Samsung ID is SVE-2016-7501 January...

Multiple Lenovo VIBE phones elevation of privilege vulnerability

Android 6.0 Marshmallow is a Linux-based open source operating system developed by Google and the Open Handset Alliance OHA in the U.S. The Lenovo A2010-a and other smartphone products from China's Lenovo use the Android 6.0 Marshmallow operating system. The Lenovo A2010-a is a smartphone from...