Search Results (363384 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2021-25410 1 Google 1 Android 2024-11-21 7.1 High
Improper access control of a component in CallBGProvider prior to SMR JUN-2021 Release 1 allows local attackers to access arbitrary files with an escalated privilege.
CVE-2021-25409 1 Google 1 Android 2024-11-21 2.4 Low
Improper access in Notification setting prior to SMR JUN-2021 Release 1 allows physically proximate attackers to set arbitrary notification via physically configuring device.
CVE-2021-25408 2 Google, Samsung 5 Android, Exynos 2100, Exynos 980 and 2 more 2024-11-21 7.8 High
A possible buffer overflow vulnerability in NPU driver prior to SMR JUN-2021 Release 1 allows arbitrary memory write and code execution.
CVE-2021-25407 2 Google, Samsung 5 Android, Exynos 2100, Exynos 980 and 2 more 2024-11-21 7.8 High
A possible out of bounds write vulnerability in NPU driver prior to SMR JUN-2021 Release 1 allows arbitrary memory write.
CVE-2021-25406 1 Samsung 1 Gear S 2024-11-21 6.5 Medium
Information exposure vulnerability in Gear S Plugin prior to version 2.2.05.20122441 allows unstrusted applications to access connected BT device information.
CVE-2021-25405 1 Samsung 1 Notes 2024-11-21 5.5 Medium
An improper access control vulnerability in ScreenOffActivity in Samsung Notes prior to version 4.2.04.27 allows untrusted applications to access local files.
CVE-2021-25404 1 Samsung 2 Smartthings, Smartthings Firmware 2024-11-21 3.3 Low
Information Exposure vulnerability in SmartThings prior to version 1.7.64.21 allows attacker to access user information via log.
CVE-2021-25403 2 Google, Samsung 2 Android, Account 2024-11-21 3.3 Low
Intent redirection vulnerability in Samsung Account prior to version 10.8.0.4 in Android P(9.0) and below, and 12.2.0.9 in Android Q(10.0) and above allows attacker to access contacts and file provider using SettingWebView component.
CVE-2021-25402 1 Samsung 1 Notes 2024-11-21 3.3 Low
Information Exposure vulnerability in Samsung Notes prior to version 4.2.04.27 allows attacker to access s pen latency information.
CVE-2021-25401 1 Samsung 1 Health 2024-11-21 7.8 High
Intent redirection vulnerability in Samsung Health prior to version 6.16 allows attacker to execute privileged action.
CVE-2021-25400 1 Samsung 1 Internet 2024-11-21 7.8 High
Intent redirection vulnerability in Samsung Internet prior to version 14.0.1.20 allows attacker to execute privileged action.
CVE-2021-25399 1 Samsung 1 Smart Manager 2024-11-21 7.1 High
Improper configuration in Smart Manager prior to version 11.0.05.0 allows attacker to access the file with system privilege.
CVE-2021-25398 1 Samsung 1 Bixby Voice 2024-11-21 3.3 Low
Intent redirection vulnerability in Bixby Voice prior to version 3.1.12 allows attacker to access contacts.
CVE-2021-25397 1 Google 1 Android 2024-11-21 6.8 Medium
An improper access control vulnerability in TelephonyUI prior to SMR MAY-2021 Release 1 allows local attackers to write arbitrary files of telephony process via untrusted applications.
CVE-2021-25396 2 Google, Samsung 5 Android, Exynos 2100, Exynos 980 and 2 more 2024-11-21 6.7 Medium
An improper input validation vulnerability in NPU firmware prior to SMR MAY-2021 Release 1 allows arbitrary memory write and code execution.
CVE-2021-25393 1 Google 1 Android 2024-11-21 6.6 Medium
Improper sanitization of incoming intent in SecSettings prior to SMR MAY-2021 Release 1 allows local attackers to get permissions to access system uid data.
CVE-2021-25392 1 Google 1 Android 2024-11-21 4 Medium
Improper protection of backup path configuration in Samsung Dex prior to SMR MAY-2021 Release 1 allows local attackers to get sensitive information via changing the path.
CVE-2021-25391 1 Google 1 Android 2024-11-21 4 Medium
Intent redirection vulnerability in Secure Folder prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action.
CVE-2021-25390 1 Google 1 Android 2024-11-21 4 Medium
Intent redirection vulnerability in PhotoTable prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action.
CVE-2021-25389 1 Google 1 Android 2024-11-21 2.3 Low
Improper running task check in S Secure prior to SMR MAY-2021 Release 1 allows attackers to use locked app without authentication.