Lucene search
K

82 matches found

Vulnrichment
Vulnrichment
added 2025/05/14 12:0 a.m.7 views

CVE-2025-25370

An issue in realme GT 2 RMX3311 running Android 14 with realme UI 5.0 allows a physically proximate attacker to obtain sensitive information via the show app only setting function...

4.4AI score0.00187EPSS
Exploits0References2
CVE
CVE
added 2025/05/14 12:0 a.m.37 views

CVE-2025-25370

CVE-2025-25370 affects Realme GT 2 (RMX3311) on Android 14 with realme UI 5.0. A nearby attacker can access sensitive information via the show app only setting function. The issue is described as a physical-proximity vulnerability with high confidentiality impact and low attack complexity, requir...

4.6CVSS6.3AI score0.00187EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 9:44 a.m.7 views

CVE-2025-20970

Improper access control in Bixby Vision prior to version 3.8.1 in Android 13, 3.8.3 in Android 14, 3.8.21 in Android 15 allows local attackers to access image files with Bixby Vision privilege...

6.2CVSS6.7AI score0.00124EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 9:44 a.m.8 views

CVE-2025-20973

Improper authentication in Secure Folder prior to version 1.8.12.0 in Android 13, and 1.9.21.00 in Android 14 allows physical attackers to reset the lock type of Secure Folder...

5.4CVSS6.9AI score0.00186EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 8:24 a.m.52 views

CVE-2025-20973

CVE-2025-20973 corresponds to an improper authentication issue in Samsung Secure Folder. Affected versions are prior to 1.8.12.0 on Android 13 and prior to 1.9.21.00 on Android 14. This vulnerability allows a physical attacker to reset the Secure Folder lock type. Remediation is to update to 1.8....

5.4CVSS5.4AI score0.00186EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 8:24 a.m.6 views

CVE-2025-20973

Improper authentication in Secure Folder prior to version 1.8.12.0 in Android 13, and 1.9.21.00 in Android 14 allows physical attackers to reset the lock type of Secure Folder...

5.4CVSS5.4AI score0.00186EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 8:24 a.m.45 views

CVE-2025-20970

CVE-2025-20970 affects Samsung Bixby Vision. Improper access control in Bixby Vision allows local attackers to access image files with Bixby Vision privilege. Affected: Android 13 (prior to 3.8.1), Android 14 (prior to 3.8.3), Android 15 (prior to 3.8.21). Mitigation: update to 3.8.1+ on Android ...

6.2CVSS6.1AI score0.00124EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.5 views

PT-2025-20058 · Samsung +1 · Secure Folder +2

Name of the Vulnerable Software and Affected Versions: Secure Folder versions prior to 1.8.12.0 in Android 13 Secure Folder versions prior to 1.9.21.00 in Android 14 Description: The issue is related to improper authentication in Secure Folder, allowing physical attackers to reset the lock type...

5.4CVSS6.4AI score0.00186EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.5 views

PT-2025-20055 · Samsung · Bixby Vision

Name of the Vulnerable Software and Affected Versions: Bixby Vision versions prior to 3.8.1 in Android 13 Bixby Vision versions prior to 3.8.3 in Android 14 Bixby Vision versions prior to 3.8.21 in Android 15 Description: The issue is related to improper access control in Bixby Vision, allowing...

6.2CVSS6.2AI score0.00124EPSS
Exploits0References6
OSV
OSV
added 2025/05/01 12:0 a.m.30 views

ASB-A-294105066

In shouldRestrictOverlayActivities of UsbProfileGroupSettingsManager.java, there is a possible escape from SUW due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

7.8CVSS7.8AI score0.00189EPSS
Exploits0References2
OSV
OSV
added 2025/03/06 5:15 a.m.6 views

CVE-2025-20926

Improper export of Android application components in My Files prior to version 15.0.07.5 in Android 14 allows local attackers to access files with My Files' privilege...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/07 6:5 p.m.6 views

CVE-2025-20899

Improper access control in PushNotification prior to version 13.0.00.15 in Android 12, 14.0.00.7 in Android 13, and 15.1.00.5 in Android 14 allows local attackers to access sensitive information...

4CVSS6.5AI score0.00143EPSS
Exploits0References1
CVE
CVE
added 2025/02/04 7:19 a.m.63 views

CVE-2025-20897

CVE-2025-20897 concerns Samsung Secure Folder across Android 12–14. The issue is described as improper access control within Secure Folder, enabling a local attacker to access data. Affected versions include: Android 14 — Secure Folder prior to 1.9.20.50; Android 13 — prior to 1.8.11.0; Android 1...

6.8CVSS6.8AI score0.00148EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/04 12:0 a.m.4 views

PT-2025-4181 · Google · Android 12 +2

Name of the Vulnerable Software and Affected Versions: PushNotification versions prior to 13.0.00.15 in Android 12 PushNotification versions prior to 14.0.00.7 in Android 13 PushNotification versions prior to 15.1.00.5 in Android 14 Description: The issue is related to improper access control in...

4CVSS6.8AI score0.00143EPSS
Exploits0References5
NVD
NVD
added 2024/12/03 6:15 a.m.16 views

CVE-2024-49421

Path traversal in Quick Share Agent prior to version 3.5.14.47 in Android 12, 3.5.19.41 in Android 13, and 3.5.19.42 in Android 14 allows adjacent attackers to write file in arbitrary location...

4.3CVSS0.00352EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/03 5:48 a.m.15 views

CVE-2024-49421

Path traversal in Quick Share Agent prior to version 3.5.14.47 in Android 12, 3.5.19.41 in Android 13, and 3.5.19.42 in Android 14 allows adjacent attackers to write file in arbitrary location...

4.3CVSS7.1AI score0.00352EPSS
Exploits0References1
CVE
CVE
added 2024/12/03 5:48 a.m.49 views

CVE-2024-49421

CVE-2024-49421 describes a path traversal flaw in Samsung Quick Share Agent. Affected: Android 12 (before 3.5.14.47), Android 13 (before 3.5.19.41), Android 14 (before 3.5.19.42). Root cause: improper validation of user-supplied path leading to arbitrary file writes. Impact: adjacent attackers co...

4.3CVSS4.8AI score0.00352EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/12/03 5:48 a.m.19 views

CVE-2024-49421

Path traversal in Quick Share Agent prior to version 3.5.14.47 in Android 12, 3.5.19.41 in Android 13, and 3.5.19.42 in Android 14 allows adjacent attackers to write file in arbitrary location...

4.3CVSS0.00352EPSS
Exploits0References1
NVD
NVD
added 2024/11/06 3:15 a.m.27 views

CVE-2024-49404

Improper Access Control in Samsung Video Player prior to versions 7.3.29.1 in Android 12, 7.3.36.1 in Android 13, and 7.3.41.230 in Android 14 allows physical attackers to access video file of other users...

5.5CVSS0.00158EPSS
Exploits0References1
CVE
CVE
added 2024/11/06 2:17 a.m.61 views

CVE-2024-49404

The CVE-2024-49404 entry concerns Samsung Video Player with an improper access control flaw that could allow a physical attacker to access other users’ video files. Affected versions are: Android 12 where versions prior to 7.3.29.1 are vulnerable; Android 13 prior to 7.3.36.1; and Android 14 prio...

5.5CVSS5.3AI score0.00158EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder