Samsung Mobile@6.0 Security Vulnerabilities and Issues — Samsung Mobile@6.0 CVE List

Lucene search

SamsungSamsung Mobile6.0

5 matches found

CVE•added 2018/05/29 8:29 p.m.•46 views

CVE-2018-10751

A malformed OMACP WAP push message can cause memory corruption on a Samsung S7 Edge device when processing the String Extension portion of the WbXml payload. This is due to an integer overflow in memory allocation for this string. The Samsung ID is SVE-2018-11463.

5.4CVSS6.4AI score0.16539EPSS

CVE•added 2018/01/04 6:29 a.m.•41 views

CVE-2017-18020

On Samsung mobile devices with L(5.x), M(6.x), and N(7.x) software and Exynos chipsets, attackers can execute arbitrary code in the bootloader because S Boot omits a size check during a copy of ramfs data to memory. The Samsung ID is SVE-2017-10598.

8.4CVSS8.5AI score0.00052EPSS

CVE•added 2018/03/30 8:29 a.m.•38 views

CVE-2018-9140

On Samsung mobile devices with M(6.0) software, the Email application allows XSS via an event attribute and arbitrary file loading via a src attribute, aka SVE-2017-10747.

6.1CVSS6AI score0.0036EPSS

CVE•added 2018/03/30 8:29 a.m.•38 views

CVE-2018-9143

On Samsung mobile devices with M(6.0) and N(7.x) software, a heap overflow in the sensorhub binder service leads to code execution in a privileged process, aka SVE-2017-10991.

10CVSS9.6AI score0.01131EPSS

CVE•added 2018/03/30 8:29 a.m.•29 views

CVE-2018-9141

On Samsung mobile devices with L(5.x), M(6.0), and N(7.x) software, Gallery allows remote attackers to execute arbitrary code via a BMP file with a crafted resolution, aka SVE-2017-11105.

9.3CVSS7.9AI score0.0076EPSS