Lucene search
+L

28 matches found

NVD
NVD
added 2023/05/04 9:15 p.m.26 views

CVE-2023-21495

Improper access control vulnerability in Knox Enrollment Service prior to SMR May-2023 Release 1 allow attacker install KSP app when device admin is set...

5.5CVSS4.7AI score0.00151EPSS
Exploits0References1
NVD
NVD
added 2023/05/04 9:15 p.m.19 views

CVE-2023-21499

Out-of-bounds write vulnerability in TACommunicationmposencryptpin in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code...

8.2CVSS8.3AI score0.0019EPSS
Exploits0References1
NVD
NVD
added 2023/05/04 9:15 p.m.32 views

CVE-2023-21484

Improper access control vulnerability in AppLock prior to SMR May-2023 Release 1 allows local attackers without proper permission to execute a privileged operation...

7.8CVSS5.9AI score0.00148EPSS
Exploits0References1
Prion
Prion
added 2023/05/04 9:15 p.m.22 views

Improper access control

Improper access control vulnerability in AppLock prior to SMR May-2023 Release 1 allows local attackers without proper permission to execute a privileged operation...

4.3CVSS7.4AI score0.00148EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/05/04 9:15 p.m.21 views

Improper access control

Improper access control vulnerability in ThemeManager prior to SMR May-2023 Release 1 allows local attackers to write arbitrary files with system privilege...

4.3CVSS7.5AI score0.00152EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/05/04 9:15 p.m.17 views

Input validation

Improper export of android application components vulnerability in VideoPreviewActivity in Call Settings to SMR May-2023 Release 1 allows physical attackers to access some media data stored in sandbox...

2.1CVSS4.6AI score0.0025EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/05/04 9:15 p.m.17 views

Cross site scripting

Out-of-bounds write vulnerability in TACommunicationmposencryptpin in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code...

4.3CVSS7.8AI score0.0019EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/05/04 9:15 p.m.15 views

Improper access control

Improper access control in GearManagerStub prior to SMR May-2023 Release 1 allows a local attacker to delete applications installed by watchmanager...

3.2CVSS6.7AI score0.00128EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/05/04 9:15 p.m.15 views

Buffer overflow

Potential buffer overflow vulnerability in mmPlmncoordination.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access...

7.5CVSS9.5AI score0.00624EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/05/04 12:0 a.m.26 views

CVE-2023-21499

Out-of-bounds write vulnerability in TACommunicationmposencryptpin in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code...

8.2CVSS8.5AI score0.0019EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/05/04 12:0 a.m.29 views

CVE-2023-21501

Improper input validation vulnerability in mPOS fiserve trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code...

8.2CVSS8.5AI score0.0019EPSS
Exploits0References1
CVE
CVE
added 2023/05/04 12:0 a.m.46 views

CVE-2023-21493

CVE-2023-21493 affects SemShareFileProvider prior to SMR May-2023 Release 1. The vulnerability is an improper access-control issue that enables local attackers to access protected data. Root cause is insufficient access restrictions on SemShareFileProvider components. Affected software is SemShar...

6.8CVSS5.3AI score0.00151EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/04 12:0 a.m.10 views

CVE-2023-21497

Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to access the memory address...

4.4CVSS7.5AI score0.00179EPSS
Exploits0References1
CVE
CVE
added 2023/05/04 12:0 a.m.47 views

CVE-2023-21495

CVE-2023-21495 concerns an improper access control bug in the Knox Enrollment Service on Samsung devices, prior to SMR May-2023 Release 1. The issue could allow an attacker to install a KSP app when device admin is set. Root cause: access control weakness in Knox Enrollment Service. Severity metr...

5.5CVSS5.4AI score0.00151EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/05/04 12:0 a.m.43 views

CVE-2023-21496

CVE-2023-21496 affects ActivityManagerService in Android/Samsung devices. Affected: ActivityManagerService versions prior to SMR May-2023 Release 1. Issue: Active Debug Code vulnerability allows an attacker to use a debug function by setting the debug level. Evidence of patching: Samsung/Google s...

6.1CVSS5.5AI score0.00176EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/05/04 12:0 a.m.52 views

CVE-2023-21486

CVE-2023-21486 concerns an improper export of Android components in ImagePreviewActivity within Samsung Call Settings, enabling a physical attacker to access certain media data in sandbox. The issue is tied to specific Samsung SMR May-2023 Release 1 updates; remediation is provided via the May-20...

5.3CVSS4.5AI score0.0025EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/05/04 12:0 a.m.46 views

CVE-2023-21501

The CVE-2023-21501 entry concerns Samsung mobile devices where an improper input validation vulnerability in the mPOS fiserve trustlet (pre-SMR May-2023 Release 1) permits a local attacker to execute arbitrary code. Affected component: mPOS fiserve trustlet; root cause: inadequate input validatio...

8.2CVSS7.7AI score0.0019EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/05/04 12:0 a.m.57 views

CVE-2023-21499

The vulnerability CVE-2023-21499 affects the mPOS TUI trustlet on Samsung devices, specifically the TA_Communication_mpos_encrypt_pin function. It is an out-of-bounds write in this component prior to SMR May-2023 Release 1, enabling local attackers to execute arbitrary code. Exploitation details ...

8.2CVSS7.7AI score0.0019EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/05/04 12:0 a.m.27 views

CVE-2023-21489

Heap out-of-bounds write vulnerability in bootloader prior to SMR May-2023 Release 1 allows a physical attacker to execute arbitrary code...

7.1CVSS7.3AI score0.00267EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/05/04 12:0 a.m.30 views

CVE-2023-21493

Improper access control vulnerability in SemShareFileProvider prior to SMR May-2023 Release 1 allows local attackers to access protected data...

6.8CVSS6.7AI score0.00151EPSS
Exploits0References1
Rows per page
Query Builder