Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Samsung Security Vulnerabilities

cve
cve

CVE-2023-30647

Heap out of bound write vulnerability in IpcRxUsimPhoneBookCapa of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.

7.8CVSS

7.9AI Score

0.0004EPSS

2023-07-06 03:15 AM
9
cve
cve

CVE-2023-30648

Stack out-of-bounds write vulnerability in IpcRxImeiUpdateImeiNoti of RILD priro to SMR Jul-2023 Release 1 cause a denial of service on the system.

5.5CVSS

5.5AI Score

0.0004EPSS

2023-07-06 03:15 AM
9
cve
cve

CVE-2023-30649

Heap out of bound write vulnerability in RmtUimNeedApdu of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.

7.8CVSS

7.9AI Score

0.0004EPSS

2023-07-06 03:15 AM
13
cve
cve

CVE-2023-30650

Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-07-06 03:15 AM
8
cve
cve

CVE-2023-30651

Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-07-06 03:15 AM
7
cve
cve

CVE-2023-30652

Out of bounds read and write in callrunTspCmdNoRead of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-07-06 03:15 AM
6
cve
cve

CVE-2023-30653

Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-07-06 03:15 AM
8
cve
cve

CVE-2023-30654

Improper access control vulnerability in SLocationService prior to SMR Aug-2023 Release 1 allows local attacker to update fake location.

6.7CVSS

5.3AI Score

0.0004EPSS

2023-08-10 02:15 AM
17
cve
cve

CVE-2023-30655

Improper input validation vulnerability in SCEPProfile prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities.

8.5CVSS

7.3AI Score

0.0004EPSS

2023-07-06 03:15 AM
7
cve
cve

CVE-2023-30656

Improper input validation vulnerability in LSOItemData prior to SMR Jul-2023 Release 1 allows attackers to launch certain activities.

8.5CVSS

7.5AI Score

0.0004EPSS

2023-07-06 03:15 AM
9
cve
cve

CVE-2023-30657

Improper input validation vulnerability in EnhancedAttestationResult prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities.

7.8CVSS

7.3AI Score

0.0004EPSS

2023-07-06 03:15 AM
4
cve
cve

CVE-2023-30658

Improper input validation vulnerability in DataProfile prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities.

8.5CVSS

7.3AI Score

0.0004EPSS

2023-07-06 03:15 AM
8
cve
cve

CVE-2023-30659

Improper input validation vulnerability in Transaction prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities.

7.8CVSS

7.3AI Score

0.0004EPSS

2023-07-06 03:15 AM
5
cve
cve

CVE-2023-30660

Exposure of Sensitive Information vulnerability in getDefaultChipId in UwbAospAdapterService prior to SMR Jul-2023 Release 1 allows local attackers to access the UWB chipset Identifier.

6.2CVSS

5.3AI Score

0.0004EPSS

2023-07-06 03:15 AM
7
cve
cve

CVE-2023-30661

Exposure of Sensitive Information vulnerability in getChipInfos in UwbAospAdapterService prior to SMR Jul-2023 Release 1 allows local attackers to access the UWB chipset Identifier.

6.2CVSS

5.3AI Score

0.0004EPSS

2023-07-06 03:15 AM
5
cve
cve

CVE-2023-30662

Exposure of Sensitive Information vulnerability in getChipIds in UwbAospAdapterService prior to SMR Jul-2023 Release 1 allows local attackers to access the UWB chipset Identifier.

6.2CVSS

5.3AI Score

0.0004EPSS

2023-07-06 03:15 AM
7
cve
cve

CVE-2023-30663

Improper input validation vulnerability in OemPersonalizationSetLock in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds write.

7.8CVSS

7.3AI Score

0.0004EPSS

2023-07-06 03:15 AM
14
cve
cve

CVE-2023-30664

Improper input validation vulnerability in RegisteredMSISDN prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities.

8.5CVSS

7.3AI Score

0.0004EPSS

2023-07-06 03:15 AM
8
cve
cve

CVE-2023-30665

Improper input validation vulnerability in OnOemServiceMode in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds read.

4.4CVSS

4.6AI Score

0.0004EPSS

2023-07-06 03:15 AM
8
cve
cve

CVE-2023-30666

Improper input validation vulnerability in DoOemImeiSetPreconfig in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds write.

7.8CVSS

7.3AI Score

0.0004EPSS

2023-07-06 03:15 AM
7
cve
cve

CVE-2023-30667

Improper access control in Audio system service prior to SMR Jul-2023 Release 1 allows attacker to send broadcast with system privilege.

5.1CVSS

4.1AI Score

0.0004EPSS

2023-07-06 03:15 AM
14
cve
cve

CVE-2023-30668

Out-of-bounds Write in BuildOemSecureSimLockResponse of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-07-06 03:15 AM
9
cve
cve

CVE-2023-30669

Out-of-bounds Write in DoOemFactorySendFactoryTestResult of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-07-06 03:15 AM
10
cve
cve

CVE-2023-30670

Out-of-bounds Write in BuildIpcFactoryDeviceTestEvent of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-07-06 03:15 AM
6
cve
cve

CVE-2023-30671

Logic error in package installation via adb command prior to SMR Jul-2023 Release 1 allows local attackers to downgrade installed application.

6.3CVSS

5.5AI Score

0.0004EPSS

2023-07-06 03:15 AM
15
cve
cve

CVE-2023-30672

Improper privilege management vulnerability in Samsung Smart Switch for Windows Installer prior to version 4.3.23043_3 allows attackers to cause permanent DoS via directory junction.

6.8CVSS

5.5AI Score

0.0004EPSS

2023-07-06 03:15 AM
7
cve
cve

CVE-2023-30673

Improper validation of integrity check vulnerability in Smart Switch PC prior to version 4.3.23052_1 allows local attackers to delete arbitrary directory using directory junction.

5.5CVSS

5.5AI Score

0.0004EPSS

2023-07-06 03:15 AM
8
cve
cve

CVE-2023-30674

Improper configuration in Samsung Internet prior to version 21.0.0.41 allows attacker to bypass SameSite Cookie.

6.5CVSS

6.4AI Score

0.001EPSS

2023-07-06 03:15 AM
9
cve
cve

CVE-2023-30675

Improper authentication in Samsung Pass prior to version 4.2.03.1 allows local attacker to access stored account information when Samsung Wallet is not installed.

6.2CVSS

5.3AI Score

0.0004EPSS

2023-07-06 03:15 AM
10
cve
cve

CVE-2023-30676

Improper access control vulnerability in Samsung Pass prior to version 4.2.03.1 allows physical attackers to access data of Samsung Pass.

4.6CVSS

4.6AI Score

0.001EPSS

2023-07-06 03:15 AM
8
cve
cve

CVE-2023-30677

Improper access control vulnerability in Samsung Pass prior to version 4.2.03.1 allows physical attackers to access data of Samsung Pass on a certain state of an unlocked device.

6.1CVSS

4.6AI Score

0.001EPSS

2023-07-06 03:15 AM
13
cve
cve

CVE-2023-30678

Potential zip path traversal vulnerability in Calendar application prior to version 12.4.07.15 in Android 13 allows attackers to write arbitrary file.

5.5CVSS

5.5AI Score

0.0004EPSS

2023-07-06 03:15 AM
9
cve
cve

CVE-2023-30679

Improper access control in HDCP trustlet prior to SMR Aug-2023 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-08-10 02:15 AM
19
cve
cve

CVE-2023-30680

Improper privilege management vulnerability in MMIGroup prior to SMR Aug-2023 Release 1 allows code execution with privilege.

8.4CVSS

7.8AI Score

0.0004EPSS

2023-08-10 02:15 AM
30
cve
cve

CVE-2023-30681

An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.

7.8CVSS

7.4AI Score

0.0004EPSS

2023-08-10 02:15 AM
19
cve
cve

CVE-2023-30682

Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call silenceRinger API without permission.

4.3CVSS

4AI Score

0.0004EPSS

2023-08-10 02:15 AM
2428
cve
cve

CVE-2023-30683

Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call endCall API without permission.

4.3CVSS

4AI Score

0.0004EPSS

2023-08-10 02:15 AM
2429
cve
cve

CVE-2023-30684

Improper access control in Samsung Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call acceptRingingCall API without permission.

4.3CVSS

4AI Score

0.0004EPSS

2023-08-10 02:15 AM
2427
cve
cve

CVE-2023-30685

Improper access control vulnerability in Telecom prior to SMR Aug-2023 Release 1 allows local attakcers to change TTY mode.

4.3CVSS

4AI Score

0.0004EPSS

2023-08-10 02:15 AM
23
cve
cve

CVE-2023-30686

Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-08-10 02:15 AM
19
cve
cve

CVE-2023-30687

Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-08-10 02:15 AM
19
cve
cve

CVE-2023-30688

Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-08-10 02:15 AM
25
cve
cve

CVE-2023-30689

Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-08-10 02:15 AM
15
cve
cve

CVE-2023-30690

Improper input validation vulnerability in Duo prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities.

8.5CVSS

7.3AI Score

0.0004EPSS

2023-10-04 04:15 AM
34
cve
cve

CVE-2023-30691

Parcel mismatch in AuthenticationConfig prior to SMR Aug-2023 Release 1 allows local attacker to privilege escalation.

8.4CVSS

7.4AI Score

0.0004EPSS

2023-08-10 02:15 AM
23
cve
cve

CVE-2023-30692

Improper input validation vulnerability in Evaluator prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities.

8.5CVSS

7.3AI Score

0.0004EPSS

2023-10-04 04:15 AM
29
cve
cve

CVE-2023-30693

Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-08-10 02:15 AM
18
cve
cve

CVE-2023-30694

Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-08-10 02:15 AM
20
cve
cve

CVE-2023-30695

Out-of-bounds Write vulnerability in SSHDCPAPP TA prior to "SAMSUNG ELECTONICS, CO, LTD. - System Hardware Update - 7/13/2023" in Windows Update for Galaxy book Go, Galaxy book Go 5G, Galaxy book2 Go and Galaxy book2 Pro 360 allows local attacker to execute arbitrary code.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-08-10 02:15 AM
17
cve
cve

CVE-2023-30696

An improper input validation in IpcTxGetVerifyAkey in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.

7.8CVSS

7.4AI Score

0.0004EPSS

2023-08-10 02:15 AM
18
Total number of security vulnerabilities900