Lucene search

K
SamsungAndroid13.0

286 matches found

CVE
CVE
added 2024/11/06 3:15 a.m.38 views

CVE-2024-34680

Use of implicit intent for sensitive communication in WlanTest prior to SMR Nov-2024 Release 1 allows local attackers to get sensitive information.

5.5CVSS4.3AI score0.00027EPSS
CVE
CVE
added 2024/12/03 6:15 a.m.38 views

CVE-2024-49410

Out-of-bounds write in libswmfextractor.so prior to SMR Dec-2024 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS6.1AI score0.00029EPSS
CVE
CVE
added 2024/12/03 6:15 a.m.38 views

CVE-2024-49414

Authentication Bypass Using an Alternate Path in Dex Mode prior to SMR Dec-2024 Release 1 allows physical attackers to temporarily access to recent app list.

2.4CVSS3.6AI score0.00045EPSS
CVE
CVE
added 2024/12/03 6:15 a.m.38 views

CVE-2024-49415

Out-of-bound write in libsaped.so prior to SMR Dec-2024 Release 1 allows remote attackers to execute arbitrary code.

9.8CVSS8.4AI score0.00707EPSS
CVE
CVE
added 2025/05/07 9:15 a.m.38 views

CVE-2025-20955

Improper Export of Android Application Components in NotificationHistoryImageProvider prior to SMR May-2025 Release 1 allows local attackers to access notification images.

5.5CVSS5.3AI score0.00018EPSS
CVE
CVE
added 2023/02/09 7:15 p.m.37 views

CVE-2023-21439

Improper input validation vulnerability in UwbDataTxStatusEvent prior to SMR Feb-2023 Release 1 allows attackers to launch certain activities.

8.5CVSS7.5AI score0.00044EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.37 views

CVE-2023-21486

Improper export of android application components vulnerability in ImagePreviewActivity in Call Settings to SMR May-2023 Release 1 allows physical attackers to access some media data stored in sandbox.

5.3CVSS4.5AI score0.00072EPSS
CVE
CVE
added 2023/08/10 2:15 a.m.37 views

CVE-2023-30687

Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS7.7AI score0.00029EPSS
CVE
CVE
added 2023/08/10 2:15 a.m.37 views

CVE-2023-30701

PendingIntent hijacking in WifiGeofenceManager prior to SMR Aug-2023 Release 1 allows local attacker to arbitrary file access.

5.5CVSS5.4AI score0.00054EPSS
CVE
CVE
added 2023/09/06 4:15 a.m.37 views

CVE-2023-30717

Sensitive information exposure vulnerability in SVCAgent prior to SMR Sep-2023 Release 1 allows attackers to get unresettable identifiers.

4CVSS4AI score0.00149EPSS
CVE
CVE
added 2023/09/06 4:15 a.m.37 views

CVE-2023-30718

Improper export of android application components vulnerability in WifiApAutoHotspotEnablingActivity prior to SMR Sep-2023 Release 1 allows local attacker to change a Auto Hotspot setting.

4CVSS3.9AI score0.00074EPSS
CVE
CVE
added 2024/02/06 3:15 a.m.37 views

CVE-2024-20812

Out-of-bounds Write in padmd_vld_htbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code.

8.4CVSS7.7AI score0.00064EPSS
CVE
CVE
added 2024/07/02 10:15 a.m.37 views

CVE-2024-20890

Improper input validation in BLE prior to SMR Jul-2024 Release 1 allows adjacent attackers to trigger abnormal behavior.

8.8CVSS7AI score0.00059EPSS
CVE
CVE
added 2024/07/02 10:15 a.m.37 views

CVE-2024-34588

Improper input validation혻in parsing RTCP SR packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to trigger temporary denial of service. User interaction is required for triggering this vulnerability.

6.5CVSS5.5AI score0.00297EPSS
CVE
CVE
added 2024/09/04 6:15 a.m.37 views

CVE-2024-34654

Improper Export of android application component in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access files with My Files' privilege.

6.2CVSS6.8AI score0.00038EPSS
CVE
CVE
added 2024/10/08 7:15 a.m.37 views

CVE-2024-34667

Out-of-bounds write in parsing h.265 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.

8.8CVSS8.2AI score0.00567EPSS
CVE
CVE
added 2024/11/06 3:15 a.m.37 views

CVE-2024-34673

Improper Input Validation in IpcProtocol in Modem prior to SMR Nov-2024 Release 1 allows local attackers to cause Denial-of-Service.

5.5CVSS4.4AI score0.00019EPSS
CVE
CVE
added 2025/05/07 9:15 a.m.37 views

CVE-2025-20959

Use of implicit intent for sensitive communication in Wi-Fi P2P service prior to SMR May-2025 Release 1 allows local attackers to access sensitive information.

5.5CVSS5.1AI score0.00018EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.36 views

CVE-2023-21487

Improper access control vulnerability in Telephony framework prior to SMR May-2023 Release 1 allows local attackers to change a call setting.

5.1CVSS4AI score0.00032EPSS
CVE
CVE
added 2023/09/06 4:15 a.m.36 views

CVE-2023-30710

Improper input validation vulnerability in Knox AI prior to SMR Sep-2023 Release 1 allows local attackers to launch privileged activities.

8.5CVSS7.3AI score0.00076EPSS
CVE
CVE
added 2023/09/06 4:15 a.m.36 views

CVE-2023-30711

Improper authentication in Phone and Messaging Storage SMR SEP-2023 Release 1 allows attacker to insert arbitrary data to the provider.

4CVSS4.4AI score0.00123EPSS
CVE
CVE
added 2024/01/04 1:15 a.m.36 views

CVE-2024-20806

Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data.

6.2CVSS5.3AI score0.00054EPSS
CVE
CVE
added 2024/02/06 3:15 a.m.36 views

CVE-2024-20816

Improper authentication vulnerability in onCharacteristicWriteRequest in Auto Hotspot prior to SMR Feb-2024 Release 1 allows adjacent attackers connect to victim's mobile hotspot without user awareness.

8CVSS6.5AI score0.00086EPSS
CVE
CVE
added 2024/09/04 6:15 a.m.36 views

CVE-2024-34637

Improper access control in WindowManagerService prior to SMR Sep-2024 Release 1 in Android 12, and SMR Jun-2024 Release 1 in Android 13 and Android 14 allows local attackers to bypass restrictions on starting services from the background.

6.2CVSS6.8AI score0.0004EPSS
CVE
CVE
added 2024/09/04 6:15 a.m.36 views

CVE-2024-34638

Improper handling of exceptional conditions in ThemeCenter prior to SMR Sep-2024 Release 1 allows local attackers to delete non-preloaded applications.

7.1CVSS6.8AI score0.0003EPSS
CVE
CVE
added 2024/09/04 6:15 a.m.36 views

CVE-2024-34642

Improper authorization in One UI Home prior to SMR Sep-2024 Release 1 allows physical attackers to temporarily access sensitive information.

4.6CVSS6.7AI score0.00056EPSS
CVE
CVE
added 2024/09/04 6:15 a.m.36 views

CVE-2024-34653

Path Traversal in My Files prior to SMR Sep-2024 Release 1 allows physical attackers to access directories with My Files' privilege.

4.6CVSS6.8AI score0.0008EPSS
CVE
CVE
added 2024/11/06 3:15 a.m.36 views

CVE-2024-34676

Out-of-bounds write in parsing subtitle file in libsubextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption. User interaction is required for triggering this vulnerability.

7.3CVSS4.7AI score0.00026EPSS
CVE
CVE
added 2025/05/07 9:15 a.m.36 views

CVE-2025-20953

Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch activities within SmartManagerCN.

5.1CVSS5.1AI score0.00021EPSS
CVE
CVE
added 2025/05/07 9:15 a.m.36 views

CVE-2025-20958

Improper verification of intent by broadcast receiver in UnifiedWFC prior to SMR May-2025 Release 1 allows local attackers to manipulate VoWiFi related behaviors.

4.4CVSS4.6AI score0.00023EPSS
CVE
CVE
added 2023/02/09 7:15 p.m.35 views

CVE-2023-21430

An out-of-bound read vulnerability in mapToBuffer function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR JAN-2023 Release 1 allows attacker to cause memory access fault.

7.8CVSS7.3AI score0.0004EPSS
CVE
CVE
added 2023/02/09 7:15 p.m.35 views

CVE-2023-21435

Exposure of Sensitive Information vulnerability in Fingerprint TA prior to SMR Feb-2023 Release 1 allows attackers to access the memory address information via log.

5.5CVSS5.3AI score0.00051EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.35 views

CVE-2023-21500

Double free validation vulnerability in setPinPadImages in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to access the trustlet memory.

6CVSS5.4AI score0.00023EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.35 views

CVE-2023-30644

Stack out of bound write vulnerability in CdmaSmsParser of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.

7.8CVSS7.9AI score0.00087EPSS
CVE
CVE
added 2023/09/06 4:15 a.m.35 views

CVE-2023-30707

Improper input validation vulnerability in FileProviderStatusReceiver in Samsung Keyboard prior to SMR Sep-2023 Release 1 allows local attackers to delete arbitrary files with Samsung Keyboard privilege.

7.1CVSS6.8AI score0.00046EPSS
CVE
CVE
added 2023/09/06 4:15 a.m.35 views

CVE-2023-30713

Improper privilege management vulnerability in FolderLockNotifier in One UI Home prior to SMR Sep-2023 Release 1 allows local attackers to change some settings of the folder lock.

6.2CVSS5.4AI score0.00074EPSS
CVE
CVE
added 2023/09/06 4:15 a.m.35 views

CVE-2023-30716

Improper access control vulnerability in SVCAgent prior to SMR Sep-2023 Release 1 allows attackers to trigger certain commands.

5.5CVSS5.4AI score0.00111EPSS
CVE
CVE
added 2023/11/07 8:15 a.m.35 views

CVE-2023-42535

Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.

8.4CVSS7.7AI score0.00085EPSS
CVE
CVE
added 2024/08/07 2:15 a.m.35 views

CVE-2024-34614

Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS7.4AI score0.00037EPSS
CVE
CVE
added 2024/09/04 6:15 a.m.35 views

CVE-2024-34639

Improper handling of exceptional conditions in Setupwizard prior to SMR Aug-2024 Release 1 allows physical attackers to bypass proper validation.

4.6CVSS6.8AI score0.00065EPSS
CVE
CVE
added 2024/10/08 7:15 a.m.35 views

CVE-2024-34665

Out-of-bounds write in parsing h.264 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.

8.8CVSS8.2AI score0.00567EPSS
CVE
CVE
added 2023/03/16 9:15 p.m.34 views

CVE-2023-21452

Improper usage of implicit intent in Bluetooth prior to SMR Mar-2023 Release 1 allows attacker to get MAC address of connected device.

3.3CVSS4.1AI score0.00084EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.34 views

CVE-2023-21484

Improper access control vulnerability in AppLock prior to SMR May-2023 Release 1 allows local attackers without proper permission to execute a privileged operation.

7.8CVSS7.4AI score0.00027EPSS
CVE
CVE
added 2023/09/06 4:15 a.m.34 views

CVE-2023-30709

Improper access control in Dual Messenger prior to SMR Sep-2023 Release 1 allows local attackers launch activity with system privilege.

7.9CVSS6.3AI score0.00065EPSS
CVE
CVE
added 2023/11/07 8:15 a.m.34 views

CVE-2023-42529

Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS7.7AI score0.00049EPSS
CVE
CVE
added 2023/02/09 7:15 p.m.33 views

CVE-2023-21425

Improper access control vulnerability in telecom application prior to SMR JAN-2023 Release 1 allows local attackers to get sensitive information.

5.5CVSS5.3AI score0.00056EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.33 views

CVE-2023-21493

Improper access control vulnerability in SemShareFileProvider prior to SMR May-2023 Release 1 allows local attackers to access protected data.

6.8CVSS5.3AI score0.00048EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.33 views

CVE-2023-30641

Improper access control vulnerability in Settings prior to SMR Jul-2023 Release 1 allows physical attacker to use restricted user profile to access device owner's google account data.

4.3CVSS4.4AI score0.0009EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.33 views

CVE-2023-30663

Improper input validation vulnerability in OemPersonalizationSetLock in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds write.

7.8CVSS7.3AI score0.00042EPSS
CVE
CVE
added 2023/08/10 2:15 a.m.33 views

CVE-2023-30699

Out-of-bounds write vulnerability in parser_hvcC function of libsimba library prior to SMR Aug-2023 Release 1 allows code execution by remote attackers.

9.8CVSS9.5AI score0.02241EPSS
Total number of security vulnerabilities286