Lucene search

K
SamsungAndroid13.0

286 matches found

CVE
CVE
added 2024/02/06 3:15 a.m.33 views

CVE-2024-20815

Improper authentication vulnerability in onCharacteristicReadRequest in Auto Hotspot prior to SMR Feb-2024 Release 1 allows adjacent attackers connect to victim's mobile hotspot without user awareness.

8CVSS6.5AI score0.00152EPSS
CVE
CVE
added 2024/06/04 7:15 a.m.33 views

CVE-2024-20877

Heap out-of-bound write vulnerability in parsing grid image header in libsavscmn.so prior to SMR Jun-2024 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS7.6AI score0.00129EPSS
CVE
CVE
added 2024/08/07 2:15 a.m.33 views

CVE-2024-34609

Improper access control in VoiceNoteService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.

6.2CVSS6.9AI score0.0004EPSS
CVE
CVE
added 2024/09/04 6:15 a.m.33 views

CVE-2024-34640

Improper access control vulnerability in BGProtectManager prior to SMR Sep-2024 Release 1 allows local attackers to bypass restriction of process expiration.

3.3CVSS6.9AI score0.00045EPSS
CVE
CVE
added 2023/02/09 7:15 p.m.32 views

CVE-2023-21421

Improper Handling of Insufficient Permissions or Privileges vulnerability in KnoxCustomManagerService prior to SMR Jan-2023 Release 1 allows attacker to access device SIM PIN.

7.8CVSS7.5AI score0.00037EPSS
CVE
CVE
added 2023/03/16 9:15 p.m.32 views

CVE-2023-21454

Improper authorization in Samsung Keyboard prior to SMR Mar-2023 Release 1 allows physical attacker to access users text history on the lockscreen.

2.4CVSS3.8AI score0.00108EPSS
CVE
CVE
added 2023/03/16 9:15 p.m.32 views

CVE-2023-21461

Improper authorization vulnerability in AutoPowerOnOffConfirmDialog in Settings prior to SMR Mar-2023 Release 1 allows local attacker to turn device off via unprotected activity.

5.5CVSS5.3AI score0.00039EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.32 views

CVE-2023-21485

Improper export of android application components vulnerability in VideoPreviewActivity in Call Settings to SMR May-2023 Release 1 allows physical attackers to access some media data stored in sandbox.

5.3CVSS4.5AI score0.00072EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.32 views

CVE-2023-30651

Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS7.7AI score0.00038EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.32 views

CVE-2023-30653

Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS7.7AI score0.00038EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.32 views

CVE-2023-30656

Improper input validation vulnerability in LSOItemData prior to SMR Jul-2023 Release 1 allows attackers to launch certain activities.

8.5CVSS7.5AI score0.00038EPSS
CVE
CVE
added 2023/09/06 4:15 a.m.32 views

CVE-2023-30719

Exposure of Sensitive Information vulnerability in InboundSmsHandler prior to SMR Sep-2023 Release 1 allows local attackers to access certain message data.

4CVSS4AI score0.0011EPSS
CVE
CVE
added 2024/06/04 7:15 a.m.32 views

CVE-2024-20878

Heap out-of-bound write vulnerability in parsing grid image in libsavscmn.so prior to SMR June-2024 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS7.6AI score0.00129EPSS
CVE
CVE
added 2024/06/04 7:15 a.m.32 views

CVE-2024-20880

Stack-based buffer overflow vulnerability in bootloader prior to SMR Jun-2024 Release 1 allows physical attackers to overwrite memory.

6.8CVSS7.3AI score0.00245EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.31 views

CVE-2023-21490

Improper access control in GearManagerStub prior to SMR May-2023 Release 1 allows a local attacker to delete applications installed by watchmanager.

7.1CVSS6.7AI score0.00031EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.31 views

CVE-2023-21495

Improper access control vulnerability in Knox Enrollment Service prior to SMR May-2023 Release 1 allow attacker install KSP app when device admin is set.

5.5CVSS5.4AI score0.0004EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.31 views

CVE-2023-21501

Improper input validation vulnerability in mPOS fiserve trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code.

8.2CVSS7.7AI score0.00021EPSS
CVE
CVE
added 2023/09/06 4:15 a.m.31 views

CVE-2023-30712

Improper input validation in Settings Suggestions prior to SMR Sep-2023 Release 1 allows attackers to launch arbitrary activity.

7.8CVSS7.5AI score0.001EPSS
CVE
CVE
added 2023/11/07 8:15 a.m.31 views

CVE-2023-42528

Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS7.7AI score0.00036EPSS
CVE
CVE
added 2024/06/04 7:15 a.m.31 views

CVE-2024-20874

Improper access control vulnerability in SmartManagerCN prior to SMR Jun-2024 Release 1 allows local attackers to launch privileged activities.

7.9CVSS6.8AI score0.00131EPSS
CVE
CVE
added 2023/02/09 7:15 p.m.30 views

CVE-2023-21429

Improper usage of implict intent in ePDG prior to SMR JAN-2023 Release 1 allows attacker to access SSID.

4CVSS4.1AI score0.00088EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.30 views

CVE-2023-21489

Heap out-of-bounds write vulnerability in bootloader prior to SMR May-2023 Release 1 allows a physical attacker to execute arbitrary code.

7.1CVSS6.8AI score0.00083EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.30 views

CVE-2023-21494

Potential buffer overflow vulnerability in auth api in mm_Authentication.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access.

9.8CVSS9.5AI score0.00784EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.30 views

CVE-2023-21496

Active Debug Code vulnerability in ActivityManagerService prior to SMR May-2023 Release 1 allows attacker to use debug function via setting debug level.

6.1CVSS5.5AI score0.00055EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.30 views

CVE-2023-21498

Improper input validation vulnerability in setPartnerTAInfo in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to overwrite the trustlet memory.

7.8CVSS7.4AI score0.00023EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.30 views

CVE-2023-30645

Heap out of bound write vulnerability in IpcRxIncomingCBMsg of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.

7.8CVSS7.9AI score0.00087EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.30 views

CVE-2023-30667

Improper access control in Audio system service prior to SMR Jul-2023 Release 1 allows attacker to send broadcast with system privilege.

5.1CVSS4.1AI score0.00045EPSS
CVE
CVE
added 2023/08/10 2:15 a.m.30 views

CVE-2023-30689

Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

7.8CVSS7.7AI score0.00029EPSS
CVE
CVE
added 2023/11/07 8:15 a.m.30 views

CVE-2023-42533

Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel.

6.8CVSS6.7AI score0.00139EPSS
CVE
CVE
added 2024/08/07 2:15 a.m.30 views

CVE-2024-34615

Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to cause memory corruption.

7.8CVSS5.2AI score0.00043EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.29 views

CVE-2023-21488

Improper access control vulnerablility in Tips prior to SMR May-2023 Release 1 allows local attackers to launch arbitrary activity in Tips.

7.8CVSS7.4AI score0.00027EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.29 views

CVE-2023-21491

Improper access control vulnerability in ThemeManager prior to SMR May-2023 Release 1 allows local attackers to write arbitrary files with system privilege.

8.5CVSS7.5AI score0.00041EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.29 views

CVE-2023-30646

Heap out of bound write vulnerability in BroadcastSmsConfig of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.

7.8CVSS7.9AI score0.00087EPSS
CVE
CVE
added 2023/11/07 8:15 a.m.29 views

CVE-2023-42530

Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows attackers to enable Wi-Fi and Wi-Fi Direct without User Interaction.

7.5CVSS7.4AI score0.0015EPSS
CVE
CVE
added 2023/11/07 8:15 a.m.29 views

CVE-2023-42534

Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arbitrary files with system privilege.

6.3CVSS5.3AI score0.00054EPSS
CVE
CVE
added 2023/12/05 3:15 a.m.29 views

CVE-2023-42568

Improper access control vulnerability in SmartManagerCN prior to SMR Dec-2023 Release 1 allows local attackers to access arbitrary files with system privilege.

7.3CVSS4.7AI score0.00079EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.28 views

CVE-2023-21497

Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to access the memory address.

7.8CVSS7.4AI score0.00031EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.28 views

CVE-2023-30642

Improper privilege management vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to call privilege function.

6.2CVSS5.4AI score0.0004EPSS
CVE
CVE
added 2024/06/04 7:15 a.m.28 views

CVE-2024-20879

Improper input validation vulnerability in libsavscmn.so prior to SMR Jun-2024 Release 1 allows local attackers to write out-of-bounds memory.

7.1CVSS6.9AI score0.00109EPSS
CVE
CVE
added 2024/06/04 7:15 a.m.28 views

CVE-2024-20881

Improper input validation vulnerability in chnactiv TA prior to SMR Jun-2024 Release 1 allows local privileged attackers lead to potential arbitrary code execution.

6.7CVSS7.5AI score0.00071EPSS
CVE
CVE
added 2023/06/28 9:15 p.m.27 views

CVE-2023-21512

Improper Knox ID validation logic in notification framework prior to SMR Jun-2023 Release 1 allows local attackers to read work profile notifications without proper access permission.

3.3CVSS3.9AI score0.00072EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.27 views

CVE-2023-30643

Missing authentication vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to delete arbitrary non-preloaded applications.

7.7CVSS6.9AI score0.00041EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.27 views

CVE-2023-30648

Stack out-of-bounds write vulnerability in IpcRxImeiUpdateImeiNoti of RILD priro to SMR Jul-2023 Release 1 cause a denial of service on the system.

5.5CVSS5.5AI score0.00043EPSS
CVE
CVE
added 2023/11/07 8:15 a.m.27 views

CVE-2023-42532

Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote attacker to intercept the network traffic including Firmware information.

7.5CVSS7.5AI score0.00264EPSS
CVE
CVE
added 2023/12/05 3:15 a.m.27 views

CVE-2023-42558

Out of bounds write vulnerability in HDCP in HAL prior to SMR Dec-2023 Release 1 allows attacker to perform code execution.

7.8CVSS7.8AI score0.00056EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.26 views

CVE-2023-21502

Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands.

7.8CVSS7.6AI score0.00038EPSS
CVE
CVE
added 2023/05/04 9:15 p.m.26 views

CVE-2023-21504

Potential buffer overflow vulnerability in mm_Plmncoordination.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access.

9.8CVSS9.5AI score0.00571EPSS
CVE
CVE
added 2023/11/07 8:15 a.m.26 views

CVE-2023-42527

Improper input validation vulnerability in ProcessWriteFile of libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to expose sensitive information.

5.6CVSS5.3AI score0.0004EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.25 views

CVE-2023-30650

Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS7.7AI score0.00038EPSS
CVE
CVE
added 2023/07/06 3:15 a.m.25 views

CVE-2023-30655

Improper input validation vulnerability in SCEPProfile prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities.

8.5CVSS7.3AI score0.00038EPSS
Total number of security vulnerabilities286