Lucene search
+L

156 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:26 p.m.21 views

CVE-2021-25434

Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using param partition in wireless firmware download mode...

9.8CVSS7.8AI score0.01675EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:26 p.m.9 views

CVE-2021-25436

Improper input validation vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows arbitrary code execution via Samsung Accessory Protocol...

9.8CVSS7.7AI score0.01641EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:26 p.m.8 views

CVE-2021-25435

Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using recovery partition in wireless firmware download mode...

9.8CVSS7.8AI score0.01675EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:26 p.m.8 views

CVE-2021-25424

Improper authentication vulnerability in Tizen bluetooth-frwk prior to Firmware update JUN-2021 Release allows bluetooth attacker to take over the user's bluetooth device without user awareness...

8.8CVSS7AI score0.00438EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:21 p.m.11 views

CVE-2021-22684

Tizen RT RTOS version 3.0.GBB is vulnerable to integer wrap-around in functionscalloc and mmzalloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash...

7.5CVSS7AI score0.01105EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:27 p.m.10 views

CVE-2018-16272

The wpasupplicant system service in Samsung Galaxy Gear series allows an unprivileged process to fully control the Wi-Fi interface, due to the lack of its D-Bus security policy configurations. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build RE2...

9.8CVSS7AI score0.01628EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:27 p.m.9 views

CVE-2018-16267

The system-popup system service in Tizen allows an unprivileged process to perform popup-related system actions, due to improper D-Bus security policy configurations. Such actions include the triggering system poweroff menu, and prompting a popup with arbitrary strings. This affects Tizen before...

8.1CVSS7.1AI score0.0068EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:26 p.m.9 views

CVE-2018-16268

The SoundServer/FocusServer system services in Tizen allow an unprivileged process to perform media-related system actions, due to improper D-Bus security policy configurations. Such actions include playing an arbitrary sound file or DTMF tones. This affects Tizen before 5.0 M1, and Tizen-based...

4.3CVSS7.2AI score0.00518EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:26 p.m.10 views

CVE-2018-16262

The pkgmgr system service in Tizen allows an unprivileged process to perform package management actions, due to improper D-Bus security policy configurations. Such actions include installing, decrypting, and killing other packages. This affects Tizen before 5.0 M1, and Tizen-based firmwares...

8.8CVSS7AI score0.00781EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:26 p.m.8 views

CVE-2018-16271

The wemailconsumerservice from the built-in application wemail in Samsung Galaxy Gear series allows an unprivileged process to manipulate a user's mailbox, due to improper D-Bus security policy configurations. An arbitrary email can also be sent from the mailbox via the paired smartphone. This...

6.5CVSS7AI score0.00806EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:11 a.m.15 views

CVE-2018-16264

The BlueZ system service in Tizen allows an unprivileged process to partially control Bluetooth or acquire sensitive information, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2...

6.5CVSS7AI score0.00581EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:44 a.m.9 views

CVE-2018-16269

The wnoti system service in Samsung Galaxy Gear series allows an unprivileged process to take over the internal notification message data, due to improper D-Bus security policy configurations. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build RE2...

7.5CVSS7AI score0.01377EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:44 a.m.11 views

CVE-2018-16265

The bt/btcore system service in Tizen allows an unprivileged process to create a system user interface and control the Bluetooth pairing process, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series...

6.5CVSS7AI score0.0059EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:44 a.m.10 views

CVE-2018-16266

The Enlightenment system service in Tizen allows an unprivileged process to fully control or capture windows, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2...

8.1CVSS7AI score0.00705EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:21 a.m.7 views

CVE-2012-6459

ConnMan 1.3 on Tizen continues to list the bluetooth service after offline mode has been enabled, which might allow remote attackers to obtain sensitive information via Bluetooth packets...

4.3CVSS6.6AI score0.01106EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:23 a.m.8 views

CVE-2018-16263

The PulseAudio system service in Tizen allows an unprivileged process to control its A2DP MediaEndpoint, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2...

8.8CVSS7AI score0.00781EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/03/08 12:0 a.m.107 views

Android Buffer Overflow in WhatsApp (CVE-2019-3568)

Binary data androidcve-2019-18426.nbin...

9.8CVSS9.3AI score0.67859EPSS
Exploits5References2
Openbugbounty
Openbugbounty
added 2023/12/14 11:53 a.m.3 views

docs.tizen.org Cross Site Scripting vulnerability OBB-3813278

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/11/10 12:0 a.m.6 views

The vulnerability in the implementation of the calloc() and mm_zalloc() functions in the Tizen RT operating systems allows a hacker to cause a service failure.

The vulnerability of the calloc and mmzalloc functions in Tizen RT operating systems is related to integer overflow. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

7.8CVSS7.3AI score0.01105EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/08/31 5:15 p.m.7 views

CVE-2021-22684

Tizen RT RTOS version 3.0.GBB is vulnerable to integer wrap-around in functionscalloc and mmzalloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash...

7.5CVSS7.2AI score0.01105EPSS
Exploits0References1
Rows per page
Query Builder