Android Security Vulnerabilities and Issues — Android CVE List

Lucene search

SamsungAndroid

15 matches found

CVE•added 2025/09/03 6:15 a.m.•7 views

CVE-2023-21471

Improper access control vulnerability in SemClipboard prior to SMR Apr-2023 Release 1 allows attackers to read arbitrary files with system permission.

4CVSS6.2AI score0.00016EPSS

CVE•added 2025/09/03 6:15 a.m.•6 views

CVE-2023-21475

Out-of-bounds Write vulnerability in libaudiosaplus_sec.so library prior to SMR Apr-2023 Release 1 allows local attacker to execute arbitrary code.

8CVSS6.6AI score0.00015EPSS

CVE•added 2025/09/03 6:15 a.m.•6 views

CVE-2023-21476

Out-of-bounds Write vulnerability in libaudiosaplus_sec.so library prior to SMR Apr-2023 Release 1 allows local attacker to execute arbitrary code.

8CVSS6.6AI score0.00015EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2023-21466

PendingIntent hijacking vulnerability in CertificatePolicy in framework prior to SMR Apr-2023 Release 1 allows local attackers to access contentProvider without proper permission.

5.3CVSS6AI score0.00009EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2023-21472

Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1 allows a physical attacker to execute arbitrary code in bootloader.

6.8CVSS6.8AI score0.00102EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2023-21473

Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1 allows a physical attacker to execute arbitrary code in bootloader.

6.8CVSS6.8AI score0.00102EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21025

Improper access control in MARsExemptionManager prior to SMR Sep-2025 Release 1 allows local attackers to be excluded from background execution management.

5.1CVSS6.1AI score0.00018EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21026

Improper handling of insufficient permission in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to interrupt the call.

4CVSS5.9AI score0.00016EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21027

Improper verification of intent by broadcast receiver in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to temporarily disable the SIM.

5.1CVSS5.9AI score0.00017EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21028

Improper privilege management in ThemeManager prior to SMR Sep-2025 Release 1 allows local privileged attackers to reuse trial items.

5.5CVSS6AI score0.00016EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21029

Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows local attackers to send arbitrary replies to messages from the cover display.

4CVSS6AI score0.00016EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21032

Improper access control in One UI Home prior to SMR Sep-2025 Release 1 allows physical attackers to bypass Kiosk mode under limited conditions.

6.8CVSS5.9AI score0.0002EPSS

CVE•added 2025/09/03 6:15 a.m.•5 views

CVE-2025-21034

Out-of-bounds write in libsavsvc.so prior to SMR Sep-2025 Release 1 allows local attackers to potentially execute arbitrary code.

7.8CVSS6.5AI score0.00013EPSS

CVE•added 2025/09/03 6:15 a.m.•4 views

CVE-2025-21031

Improper access control in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to use the privileged APIs.

6.8CVSS5.9AI score0.00018EPSS

CVE•added 2025/09/03 6:15 a.m.•4 views

CVE-2025-21033

Improper access control in ContactProvider prior to SMR Sep-2025 Release 1 allows local attackers to access sensitive information.

5.5CVSS5.8AI score0.00013EPSS