Lucene search
K

15 matches found

Packet Storm
Packet Storm
added 2026/02/09 12:0 a.m.183 views

📄 Samsung QuramDng Embedded DNG Out-Of-Bounds Read / Write

This proof of concept demonstrates an out-of-bounds read / write vulnerability in Samsung's QuramDng image parser, affecting Galaxy S22–S25 devices running One UI 6+. By crafting a malformed DNG that abuses the OpcodeList1 specifically the FixBadPixelsList opcode and embedding it inside a JPEG...

7.5CVSS5.7AI score0.00234EPSS
Exploits1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-33232

Malicious code in bioql PyPI...

4.4CVSS5AI score0.00209EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:43 p.m.6 views

CVE-2022-28793

Given the TEE is compromised and controlled by the attacker, improper state maintenance in StrongBox allows attackers to change Android ROT during device boot cycle after compromising TEE. The patch is applied in Galaxy S22 to prevent change of Android ROT after first initialization at boot time...

4.4CVSS7AI score0.00209EPSS
Exploits0References1
Citrix
Citrix
added 2023/12/20 12:0 a.m.10 views

Android 14 - Google Zero Touch (ZrT) Enrollment Issues

Unable to enroll Galaxy devices running Android 14 through zero-touch enrollment. Currently, the following models are affected: Galaxy S22, S23 Galaxy A33, A34, A52s, A53, A54...

7.2AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2023/06/08 12:0 a.m.31 views

(Pwn2Own) Samsung Galaxy S22 McsWebViewActivity Permissive List of Allowed Inputs Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Samsung Galaxy S22 smartphones. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS6.9AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2023/05/31 12:0 a.m.42 views

(Pwn2Own) Samsung Galaxy S22 InstantPlaysDeepLink Permissive List of Allowed Inputs Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Samsung Galaxy S22 smartphones. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS6.9AI score0.00521EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/05/31 12:0 a.m.30 views

(Pwn2Own) Samsung Galaxy S22 McsWebViewActivity Permissive List of Allowed Inputs Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Samsung Galaxy S22 smartphones. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS6.9AI score0.00521EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/05/31 12:0 a.m.29 views

(Pwn2Own) Samsung Galaxy S22 McsWebViewActivity Permissive List of Allowed Inputs Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Samsung Galaxy S22 smartphones. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS6.9AI score0.00549EPSS
Exploits0References1
HackRead
HackRead
added 2022/12/13 12:58 a.m.15 views

Pwn2Own – WD, Samsung Galaxy S22, Canon and more Pwned

By Habiba Rashid The Pwn2Own 2023 event will take place in South Beach, Miami, from February 14-16, 2023. This is a post from HackRead.com Read the original post: Pwn2Own - WD, Samsung Galaxy S22, Canon and more Pwned...

0.7AI score
Exploits0
CNVD
CNVD
added 2022/05/16 12:0 a.m.10 views

Samsung Galaxy S22 StrongBox Status Maintenance Error Vulnerability

Samsung Galaxy S22 is a smartphone product released on February 9, 2022 by Samsung. The Samsung Galaxy S22 StrongBox suffers from a State Maintenance Error vulnerability that stems from incorrect StrongBox state maintenance. An attacker can exploit the vulnerability to change the Android ROT duri...

4.4CVSS6.7AI score0.00209EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/05/03 8:15 p.m.4 views

CVE-2022-28793

Given the TEE is compromised and controlled by the attacker, improper state maintenance in StrongBox allows attackers to change Android ROT during device boot cycle after compromising TEE. The patch is applied in Galaxy S22 to prevent change of Android ROT after first initialization at boot time...

4.4CVSS5.9AI score0.00209EPSS
Exploits0References2
NVD
NVD
added 2022/05/03 8:15 p.m.23 views

CVE-2022-28793

Given the TEE is compromised and controlled by the attacker, improper state maintenance in StrongBox allows attackers to change Android ROT during device boot cycle after compromising TEE. The patch is applied in Galaxy S22 to prevent change of Android ROT after first initialization at boot time...

4.4CVSS0.00209EPSS
Exploits0References1
Prion
Prion
added 2022/05/03 8:15 p.m.18 views

Design/Logic Flaw

Given the TEE is compromised and controlled by the attacker, improper state maintenance in StrongBox allows attackers to change Android ROT during device boot cycle after compromising TEE. The patch is applied in Galaxy S22 to prevent change of Android ROT after first initialization at boot time...

2.1CVSS4.8AI score0.00209EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/03 7:44 p.m.16 views

CVE-2022-28793

Given the TEE is compromised and controlled by the attacker, improper state maintenance in StrongBox allows attackers to change Android ROT during device boot cycle after compromising TEE. The patch is applied in Galaxy S22 to prevent change of Android ROT after first initialization at boot time...

4.4CVSS5.1AI score0.00209EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/05/03 12:0 a.m.3 views

Samsung Galaxy S3 代码问题漏洞

Samsung Galaxy S22 is a smartphone product released on February 9, 2022 by Samsung. The Samsung Galaxy S22 StrongBox suffers from a State Maintenance Error vulnerability that stems from incorrect StrongBox state maintenance. An attacker can exploit the vulnerability to change the Android ROT duri...

4.4CVSS5.3AI score0.00209EPSS
Exploits0References2
Rows per page
Query Builder