86 matches found
EUVD-2022-39562
Malicious code in bioql PyPI...
EUVD-2022-39547
Malicious code in bioql PyPI...
CVE-2022-36855
A use after free vulnerability in ivactl driver prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault...
Input validation
Improper input validation vulnerability for processing SIB12 PDU in Exynos modems prior to SMR Sep-2022 Release allows remote attacker to read out of bounds memory...
CVE-2022-39881
The CVE-2022-39881 entry concerns Samsung Exynos modems with an improper input validation vulnerability in processing the SIB12 PDU, leading to potential out-of-bounds memory reads. Affected are Exynos modem components prior to the SMR Sep-2022 Release. The connected sources indicate a remoteabil...
Authorization
Improper authorization in Dynamic Lockscreen prior to SMR Sep-2022 Release 1 in Android R11 and 3.3.03.66 in Android S12 allows unauthorized use of javascript interface api...
CVE-2022-39862
Improper authorization in Dynamic Lockscreen prior to SMR Sep-2022 Release 1 in Android R11 and 3.3.03.66 in Android S12 allows unauthorized use of javascript interface api...
PT-2022-25053 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions prior to SMR Sep-2022 Release 1 Android version 3.3.03.66 in Android S12 Description: The issue is related to improper authorization in the Dynamic Lockscreen, allowing unauthorized use of the javascript interface api...
CVE-2022-39862
CVE-2022-39862 affects Samsung Mobile devices running Android R (11) and Android S (12) with the Dynamic Lockscreen. The vulnerability is due to improper authorization of the dynamic lockscreen javascript interface API, enabling unauthorized use. Affected versions include SMR Sep-2022 Release 1 f...
intranetsites.com Cross Site Scripting vulnerability OBB-2963231
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
petitcrabe.com Cross Site Scripting vulnerability OBB-2928325
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2022-36860
A heap-based overflow vulnerability in LoadEnvironment function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault...
CVE-2022-36861
Custom permission misuse vulnerability in SystemUI prior to SMR Sep-2022 Release 1 allows attacker to use some protected functions with SystemUI privilege...
CVE-2022-36863
A heap-based overflow vulnerability in GetCorrectDbLanguageTypeEsPKc function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault...
CVE-2022-36862
A heap-based overflow vulnerability in HWR::EngineCJK::Impl::Construct in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault...
CVE-2022-36854
Out of bound read in libapexjni.media.samsung.so prior to SMR Sep-2022 Release 1 allows attacker access unauthorized information...
CVE-2022-36855
A use after free vulnerability in ivactl driver prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault...
CVE-2022-36847
Use after free vulnerability in mtpsendsignal function of MTP driver prior to SMR Sep-2022 Release 1 allows attackers to perform malicious actions...
CVE-2022-36849
Use after free vulnerability in sdpmmsetprocesssensitive function of sdpmm driver prior to SMR Sep-2022 Release 1 allows attackers to perform malicious actions...
CVE-2022-36853
Intent redirection in Photo Editor prior to SMR Sep-2022 Release 1 allows attacker to get sensitive information...