21 matches found
EUVD-2021-12252
Malware in sbrugna...
EUVD-2024-18590
Malicious code in bioql PyPI...
EUVD-2022-52547
Malicious code in bioql PyPI...
CVE-2024-20875
Improper caller verification vulnerability in SemClipboard prior to SMR June-2024 Release 1 allows local attackers to access arbitrary files...
CVE-2021-25356
An improper caller check vulnerability in Managed Provisioning prior to SMR APR-2021 Release 1 allows unprivileged application to install arbitrary application, grant device admin permission and then delete several installed application...
CVE-2021-25470
An improper caller check logic of SMC call in TEEGRIS secure OS prior to SMR Oct-2021 Release 1 can be used to compromise TEE...
CVE-2024-20875
Improper caller verification vulnerability in SemClipboard prior to SMR June-2024 Release 1 allows local attackers to access arbitrary files...
CVE-2024-20875
Improper caller verification vulnerability in SemClipboard prior to SMR June-2024 Release 1 allows local attackers to access arbitrary files...
CVE-2024-20811
Improper caller verification in GameOptimizer prior to SMR Feb-2024 Release 1 allows local attackers to configure GameOptimizer...
CVE-2024-20811
CVE-2024-20811 concerns Samsung Mobile’s GameOptimizer . The root cause is improper caller verification , enabling a local attacker to configure GameOptimizer. Affected are Samsung devices with the GameOptimizer component prior to the SMR Feb-2024 Release 1. The entry notes local access from an u...
CVE-2024-20811
Improper caller verification in GameOptimizer prior to SMR Feb-2024 Release 1 allows local attackers to configure GameOptimizer...
wildfly: Wildfly management of EJB Session context returns wrong caller principal with Elytron Security enabled
A flaw was found in Wildfly, where it returns an incorrect caller principal under certain heavily concurrent situations when Elytron Security is used. This flaw allows an attacker to gain improper access to information they should not have...
CVE-2022-30717
Improper caller check in AR Emoji prior to SMR Jun-2022 Release 1 allows untrusted applications to use some camera functions via deeplink...
CVE-2021-25470
An improper caller check logic of SMC call in TEEGRIS secure OS prior to SMR Oct-2021 Release 1 can be used to compromise TEE...
CVE-2021-25470
CVE-2021-25470 affects TEEGRIS Secure OS prior to SMR Oct‑2021 Release 1. The issue is an improper caller check logic in the SMC call that can be used to compromise the Trusted Execution Environment (TEE). Impact is described as TEE compromise; no exploit details provided in the documents. Mitiga...
PT-2021-16660 · Unknown · Teegris Secure Os
Name of the Vulnerable Software and Affected Versions: TEEGRIS secure OS versions prior to SMR Oct-2021 Release 1 Description: The issue is related to an improper caller check logic of SMC call in the TEEGRIS secure OS, which can be used to compromise the Trusted Execution Environment TEE...
CVE-2021-25388
Improper caller check vulnerability in Knox Core prior to SMR MAY-2021 Release 1 allows attackers to install arbitrary app...
Input validation
Improper caller check vulnerability in Knox Core prior to SMR MAY-2021 Release 1 allows attackers to install arbitrary app...
CVE-2021-25388
Improper caller check vulnerability in Knox Core prior to SMR MAY-2021 Release 1 allows attackers to install arbitrary app...
Samsung SMR 授权问题漏洞
Samsung SMR is a system patch package from Samsung South Korea. It provides patches for Samsung mobile applications. A security vulnerability exists in SMR MAY-2021 Release 1, which originates from an improper caller check vulnerability in the application's Knox Core, allowing attackers to exploi...