Android@14.0 Security Vulnerabilities and Issues — Page 4 of Android@14.0 CVE List

Lucene search

SamsungAndroid14.0

189 matches found

CVE•added 2024/06/04 7:15 a.m.•32 views

CVE-2024-20874

Improper access control vulnerability in SmartManagerCN prior to SMR Jun-2024 Release 1 allows local attackers to launch privileged activities.

7.9CVSS6.8AI score0.00131EPSS

CVE•added 2024/08/07 2:15 a.m.•31 views

CVE-2024-34615

Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to cause memory corruption.

7.8CVSS5.2AI score0.00043EPSS

CVE•added 2023/12/05 3:15 a.m.•30 views

CVE-2023-42562

Integer overflow vulnerability in detectionFindFaceSupportMultiInstance of libFacePreProcessingjni.camera.samsung.so prior to SMR Dec-2023 Release 1 allows attacker to trigger heap overflow.

7.8CVSS7.6AI score0.00164EPSS

CVE•added 2024/06/04 7:15 a.m.•29 views

CVE-2024-20879

Improper input validation vulnerability in libsavscmn.so prior to SMR Jun-2024 Release 1 allows local attackers to write out-of-bounds memory.

7.1CVSS6.9AI score0.00109EPSS

CVE•added 2023/12/05 3:15 a.m.•27 views

CVE-2023-42560

Heap out-of-bounds write vulnerability in dec_mono_audb of libsavsac.so prior to SMR Dec-2023 Release 1 allows an attacker to execute arbitrary code.

7.8CVSS7.9AI score0.00132EPSS

CVE•added 2023/12/05 3:15 a.m.•25 views

CVE-2023-42563

Integer overflow vulnerability in landmarkCopyImageToNative of libFacePreProcessingjni.camera.samsung.so prior to SMR Dec-2023 Release 1 allows attacker to trigger heap overflow.

7.8CVSS7.6AI score0.00156EPSS

CVE•added 2024/06/04 7:15 a.m.•24 views

CVE-2024-20882

Out-of-bounds read vulnerability in bootloader prior to SMR June-2024 Release 1 allows physical attackers to arbitrary data access.

4.6CVSS6.8AI score0.00227EPSS

CVE•added 2024/08/07 2:15 a.m.•22 views

CVE-2024-34607

Improper access control in SamsungNotesService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.

6.2CVSS6.9AI score0.0004EPSS

CVE•added 2024/08/07 2:15 a.m.•22 views

CVE-2024-34617

Improper handling of insufficient permission in Telephony prior to SMR Aug-2024 Release 1 allows local attackers to configure default Message application.

4CVSS4.3AI score0.00039EPSS

CVE•added 2024/08/07 2:15 a.m.•22 views

CVE-2024-34619

Improper input validation in librtp.so prior to SMR Aug-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.

8.8CVSS7.9AI score0.00465EPSS

CVE•added 2024/08/07 2:15 a.m.•21 views

CVE-2024-34604

Improper access control in LedCoverService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.

6.2CVSS6.9AI score0.0004EPSS

CVE•added 2024/08/07 2:15 a.m.•21 views

CVE-2024-34620

Improper privilege management in SumeNNService prior to SMR Aug-2024 Release 1 allows local attackers to start privileged service.

8.4CVSS8.1AI score0.00035EPSS

CVE•added 2024/08/07 2:15 a.m.•20 views

CVE-2024-34606

Improper access control in SmartThingsService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.

6.2CVSS6.9AI score0.0004EPSS

CVE•added 2024/08/07 2:15 a.m.•20 views

CVE-2024-34612

Out-of-bound write in libcodec2secmp4vdec.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code.

7.8CVSS7.6AI score0.00037EPSS

CVE•added 2024/08/07 2:15 a.m.•19 views

CVE-2024-34611

Improper access control in KnoxService prior to SMR Aug-2024 Release 1 allows local attackers to get sensitive information.

5.5CVSS6.7AI score0.00029EPSS

CVE•added 2024/08/07 2:15 a.m.•19 views

CVE-2024-34616

Improper handling of insufficient permission in KnoxDualDARPolicy prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive data.

5.5CVSS5.1AI score0.00034EPSS

CVE•added 2024/08/07 2:15 a.m.•19 views

CVE-2024-34618

Improper access control in System property prior to SMR Aug-2024 Release 1 allows local attackers to access cell related information.

4CVSS4.2AI score0.00041EPSS

CVE•added 2024/08/07 2:15 a.m.•18 views

CVE-2024-34608

Improper access control in PaymentManagerService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.

6.2CVSS6.9AI score0.0004EPSS

CVE•added 2024/08/07 2:15 a.m.•18 views

CVE-2024-34610

Improper access control in ExtControlDeviceService prior to SMR Aug-2024 Release 1 allows local attackers to access protected data.

5.5CVSS6.8AI score0.00038EPSS

CVE•added 2024/08/07 2:15 a.m.•15 views

CVE-2024-34605

Improper access control in SamsungHealthService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.

6.2CVSS6.9AI score0.0004EPSS

CVE•added 2024/06/04 7:15 a.m.•13 views

CVE-2024-20876

Improper input validation in libsheifdecadapter.so prior to SMR Jun-2024 Release 1 allows local attackers to lead to memory corruption.

7.8CVSS6.8AI score0.00118EPSS

CVE•added 2024/06/04 7:15 a.m.•12 views

CVE-2024-20875

Improper caller verification vulnerability in SemClipboard prior to SMR June-2024 Release 1 allows local attackers to access arbitrary files.

5.5CVSS7AI score0.00129EPSS

CVE•added 2025/07/08 11:15 a.m.•10 views

CVE-2025-21000

Improper privilege management in Bluetooth prior to SMR Jul-2025 Release 1 allows local attackers to enable Bluetooth.

6.2CVSS6.9AI score0.00019EPSS

CVE•added 2025/07/08 11:15 a.m.•9 views

CVE-2025-20982

Out-of-bounds write in setting auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.

6.7CVSS6.3AI score0.00017EPSS

CVE•added 2025/07/08 11:15 a.m.•9 views

CVE-2025-21002

Improper access control in LeAudioService prior to SMR Jul-2025 Release 1 allows local attackers to manipulate broadcasting Auracast.

6.2CVSS6.8AI score0.00019EPSS

CVE•added 2025/07/08 11:15 a.m.•8 views

CVE-2025-20983

Out-of-bounds write in checking auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.

6.7CVSS6.3AI score0.00017EPSS

CVE•added 2025/07/08 11:15 a.m.•8 views

CVE-2025-20999

Improper authorization in accessing saved Wi-Fi password for Galaxy Tablet prior to SMR Jul-2025 Release 1 allows secondary users to access owner's saved Wi-Fi password.

4.1CVSS6.7AI score0.00016EPSS

CVE•added 2025/07/08 11:15 a.m.•8 views

CVE-2025-21001

Improper access control in LeAudioService prior to SMR Jul-2025 Release 1 allows local attackers to stop broadcasting Auracast.

6.2CVSS6.8AI score0.00019EPSS

CVE•added 2025/07/08 11:15 a.m.•8 views

CVE-2025-21003

Insecure storage of sensitive information in Emergency SOS prior to SMR Jul-2025 Release 1 allows local attackers to access sensitive information.

5.5CVSS6.4AI score0.00015EPSS

CVE•added 2025/08/06 5:15 a.m.•7 views

CVE-2025-21010

Improper privilege management in SamsungAccount prior to SMR Aug-2025 Release 1 allows local privileged attackers to deactivate Samsung account.

6CVSS6.2AI score0.0002EPSS

CVE•added 2025/08/06 5:15 a.m.•6 views

CVE-2025-20990

Improper access control in accessing system device node prior to SMR Aug-2025 Release 1 allows local attackers to access device identifier.

4CVSS6.2AI score0.00018EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21025

Improper access control in MARsExemptionManager prior to SMR Sep-2025 Release 1 allows local attackers to be excluded from background execution management.

5.1CVSS6.1AI score0.0002EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21026

Improper handling of insufficient permission in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to interrupt the call.

4CVSS5.9AI score0.00016EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21027

Improper verification of intent by broadcast receiver in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to temporarily disable the SIM.

5.1CVSS5.9AI score0.00017EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21029

Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows local attackers to send arbitrary replies to messages from the cover display.

4CVSS6AI score0.00016EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21032

Improper access control in One UI Home prior to SMR Sep-2025 Release 1 allows physical attackers to bypass Kiosk mode under limited conditions.

6.8CVSS5.9AI score0.00019EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21034

Out-of-bounds write in libsavsvc.so prior to SMR Sep-2025 Release 1 allows local attackers to potentially execute arbitrary code.

7.8CVSS6.5AI score0.00017EPSS

CVE•added 2025/09/03 6:15 a.m.•4 views

CVE-2025-21031

Improper access control in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to use the privileged APIs.

6.8CVSS5.9AI score0.00018EPSS

CVE•added 2025/09/03 6:15 a.m.•4 views

CVE-2025-21033

Improper access control in ContactProvider prior to SMR Sep-2025 Release 1 allows local attackers to access sensitive information.

5.5CVSS5.8AI score0.00016EPSS

Total number of security vulnerabilities189