10 matches found
CVE-2023-21439
Improper input validation vulnerability in UwbDataTxStatusEvent prior to SMR Feb-2023 Release 1 allows attackers to launch certain activities...
CVE-2023-21440
Improper access control vulnerability in WindowManagerService prior to SMR Feb-2023 Release 1 allows attackers to take a screen capture...
CVE-2023-21435
Exposure of Sensitive Information vulnerability in Fingerprint TA prior to SMR Feb-2023 Release 1 allows attackers to access the memory address information via log...
Input validation
Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access App preview protected by Secure Folder...
CVE-2023-21436
Improper usage of implicit intent in Contacts prior to SMR Feb-2023 Release 1 allows attacker to get account ID...
PT-2023-18205 · Unknown · Uwbdatatxstatusevent
Name of the Vulnerable Software and Affected Versions: UwbDataTxStatusEvent versions prior to SMR Feb-2023 Release 1 Description: The issue is related to improper input validation, allowing attackers to launch certain activities. Recommendations: For versions prior to SMR Feb-2023 Release 1, upda...
CVE-2023-21436
CVE-2023-21436 affects Samsung Contacts prior to SMR Feb-2023 Release 1, due to improper usage of implicit intents that allows a local attacker to obtain an account ID. Connected sources indicate the issue impacts Samsung Mobile devices and that updates addressing it were included in SMR Feb-2023...
CVE-2023-21439
CVE-2023-21439 concerns an improper input validation vulnerability in the Samsung UwbDataTxStatusEvent component. The issue affects Samsung Mobile devices prior to the SMR Feb-2023 Release 1, enabling attackers to launch certain activities due to malformed input handling. Public documents in conn...
CVE-2023-21437
CVE-2023-21437 affects the Samsung Phone application prior to SMR Feb-2023 Release 1. The root cause is improper access control, enabling local attackers to access sensitive information via implicit broadcast. Impact is described as exposure of sensitive data with local attacker access and no use...
CVE-2023-21440
The CVE-2023-21440 entry maps to an improper access control vulnerability in the WindowManagerService, affecting Samsung Android devices. Root cause: WindowManagerService prior to SMR Feb-2023 Release 1 allows an attacker to capture the screen. Impact: potential exposure of screen content (confid...