20 matches found
PT-2026-5349
In multiple functions of TaskFragmentOrganizerController.java, there is a possible activity token leak due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
PT-2026-5350
Name of the Vulnerable Software and Affected Versions versions prior to 2026-0007 Description A flaw exists in the writeToParcel function within WindowInfo.cpp that could allow an attacker to trick a user into granting permissions through a tapjacking or overlay attack. This could result in local...
PT-2026-5352
Name of the Vulnerable Software and Affected Versions versions prior to 2026-0010 Description An issue exists in the onTransact function within IDrmManagerService.cpp that may lead to a local escalation of privilege. This is due to a missing bounds check, potentially resulting in an out-of-bounds...
PT-2026-5351
Name of the Vulnerable Software and Affected Versions Versions affected versions not specified Description A privilege escalation issue exists due to a confused deputy condition. Successful exploitation could lead to local privilege escalation without requiring additional execution privileges or...
EUVD-2022-24567
Malicious code in bioql PyPI...
CVE-2022-1230
This vulnerability allows local attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 prior to 4.5.40.5 phones. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw...
CVE-2022-1230
This vulnerability allows local attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 prior to 4.5.40.5 phones. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw...
CVE-2022-1230
This vulnerability allows local attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 prior to 4.5.40.5 phones. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw...
Design/Logic Flaw
This vulnerability allows local attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 prior to 4.5.40.5 phones. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw...
CVE-2022-1230
Samsung Galaxy S21 devices with software versions prior to 4.5.40.5 are affected by a local-privilege escalation vulnerability in the handling of redirections (loadUrl). An attacker who can execute low-privileged code on the target can force a redirect to a malicious site, and, in combination wit...
CVE-2022-1230
This vulnerability allows local attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 prior to 4.5.40.5 phones. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw...
CVE-2022-1230
This vulnerability allows local attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 prior to 4.5.40.5 phones. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw...
Samsung Galaxy S21 输入验证错误漏洞
SAMSUNG Galaxy Apps is a pre-installed application store program for Samsung mobile devices from Samsung South Korea. An input validation error vulnerability exists in Samsung Galaxy S21 versions prior to 4.5.40.5. An attacker can exploit the vulnerability to execute arbitrary code...
PT-2022-13731 · Samsung · Samsung Galaxy S21
Name of the Vulnerable Software and Affected Versions: Samsung Galaxy S21 versions prior to 4.5.40.5 Description: This issue allows local attackers to execute arbitrary code on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in...
(Pwn2Own) Samsung Galaxy S21 loadUrl Open Redirect Privilege Escalation Vulnerability
This vulnerability allows local attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 phones. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...
(0Day) (Pwn2Own) Samsung Galaxy S21 Exposed Dangerous Method Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 phones. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within Web...
(Pwn2Own) Samsung Galaxy S21 Open Redirect Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 phones. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Gala...
(Pwn2Own) Samsung Galaxy S21 Improper Error Handling Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 phones. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the handling of errors...
Samsung S21 Series- Price, Features and More
By Owais Sultan The Samsung Galaxy 20 phones were no doubt incredible phones. But for many users, it felt like the company had pushed the price of this flagship phone a bit too high. This is a post from HackRead.com Read the original post: Samsung S21 Series- Price, Features and More...
s21.q4cdn.com XSS vulnerability
Open Bug Bounty ID: OBB-467048 Description| Value ---|--- Affected Website:| s21.q4cdn.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat She...