Lucene search
K

13 matches found

NVD
NVD
added 2022/02/11 6:15 p.m.32 views

CVE-2022-23999

PendingIntent hijacking vulnerability in CpaReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent...

3.9CVSS0.00116EPSS
Exploits0References1
NVD
NVD
added 2022/02/11 6:15 p.m.21 views

CVE-2022-23432

An improper input validation in SMCSRPMBWSM handler of RPMB ldfw prior to SMR Feb-2022 Release 1 allows arbitrary memory write and code execution...

6.7CVSS0.00117EPSS
Exploits0References1
Prion
Prion
added 2022/02/11 6:15 p.m.20 views

Spoofing

PendingIntent hijacking vulnerability in KnoxPrivacyNoticeReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission via implicit Intent...

3.6CVSS6.7AI score0.001EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/02/11 6:15 p.m.22 views

Input validation

An improper input validation in SMCSRPMBWSM handler of RPMB ldfw prior to SMR Feb-2022 Release 1 allows arbitrary memory write and code execution...

4.6CVSS6.8AI score0.00117EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/02/11 6:15 p.m.19 views

Code injection

Unprotected dynamic receiver in Telecom prior to SMR Feb-2022 Release 1 allows untrusted applications to launch arbitrary activity...

4.6CVSS7.6AI score0.00131EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/02/11 6:15 p.m.23 views

Privilege escalation

A vulnerability using PendingIntent in DeX Home and DeX for PC prior to SMR Feb-2022 Release 1 allows attackers to access files with system privilege...

3.6CVSS6AI score0.00105EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/02/11 5:40 p.m.85 views

CVE-2022-23999

CVE-2022-23999 describes a PendingIntent hijacking vulnerability in Android’s CpaReceiver prior to Samsung SMR Feb-2022 Release 1, enabling local attackers to access media files via KnoxPrivacyNoticeReceiver through an implicit Intent. Affected component is the CpaReceiver/KnoxPrivacyNoticeReceiv...

3.9CVSS3.9AI score0.00116EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/02/11 5:40 p.m.271 views

CVE-2022-23432

CVE-2022-23432 records an improper input validation in the SMC_SRPMB_WSM handler of RPMB ldfw, before SMR Feb-2022 Release 1, that allows arbitrary memory writes and code execution. Affected: RPMB ldfw/SMSC SRPMB WSM handler (pre-Release 1 Feb-2022). Impact: local attacker could corrupt memory an...

6.7CVSS6.8AI score0.00117EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/02/11 5:40 p.m.26 views

CVE-2022-23431

An improper boundary check in RPMB ldfw prior to SMR Feb-2022 Release 1 allows arbitrary memory write and code execution...

6.4CVSS7AI score0.00117EPSS
Exploits0References1
CVE
CVE
added 2022/02/11 5:40 p.m.102 views

CVE-2022-23429

CVE-2022-23429 describes an improper boundary check in the Android audio HAL service prior to SMR Feb-2022 Release 1, allowing local attackers to read invalid memory and cause an application crash. In the provided connected records, the vulnerability is documented across multiple sources (NVD, Re...

5.3CVSS4.6AI score0.001EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/02/11 5:40 p.m.29 views

CVE-2022-23427

PendingIntent hijacking vulnerability in KnoxPrivacyNoticeReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission via implicit Intent...

3.9CVSS6.9AI score0.001EPSS
Exploits0References1
CVE
CVE
added 2022/02/11 5:40 p.m.441 views

CVE-2022-22292

CVE-2022-22292 affects Samsung Telecom dynamic receiver functionality; an unprotected dynamic receiver in Telecom prior to SMR Feb-2022 Release 1 allows untrusted apps to launch arbitrary activity. CVSSv3.1 basis: LOCAL, LOW privileges, HIGH impact on confidentiality/integrity, and HIGH impact on...

7.8CVSS7.5AI score0.00131EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/02/11 5:40 p.m.125 views

CVE-2022-22291

Technical details about CVE-2022-22291 are not publicly provided in the connected documents. Available sources summarize a logging-related information disclosure in Samsung telephony, but do not specify affected versions, root cause, exploit details, or patches; monitor for updates.

5.5CVSS5.3AI score0.00105EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder