Filtered by vendor Samsung
Subscriptions
Filtered by product Android
Subscriptions
Total
239 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-34646 | 1 Samsung | 1 Android | 2024-09-05 | 6.6 Medium |
Improper access control in DualDarManagerProxy prior to SMR Sep-2024 Release 1 allows local attackers to cause local permanent denial of service. | ||||
CVE-2024-34655 | 1 Samsung | 1 Android | 2024-09-05 | 6.2 Medium |
Incorrect use of privileged API in UniversalCredentialManager prior to SMR Sep-2024 Release 1 allows local attackers to access privileged API related to UniversalCredentialManager. | ||||
CVE-2024-34647 | 1 Samsung | 1 Android | 2024-09-05 | 4 Medium |
Incorrect use of privileged API in DualDarManagerProxy prior to SMR Sep-2024 Release 1 allows local attackers to access privileged APIs related to knox without proper license. | ||||
CVE-2024-34654 | 1 Samsung | 1 Android | 2024-09-05 | 6.2 Medium |
Improper Export of android application component in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access files with My Files' privilege. | ||||
CVE-2024-34649 | 1 Samsung | 1 Android | 2024-09-05 | 2.4 Low |
Improper access control in new Dex Mode in multitasking framework prior to SMR Sep-2024 Release 1 allows physical attackers to temporarily access an unlocked screen. | ||||
CVE-2024-34650 | 1 Samsung | 1 Android | 2024-09-05 | 4 Medium |
Incorrect authorization in CocktailbarService prior to SMR Sep-2024 Release 1 allows local attackers to access privileged APIs related to Edge panel. | ||||
CVE-2024-34651 | 1 Samsung | 1 Android | 2024-09-05 | 6.2 Medium |
Improper authorization in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access restricted data in My Files. | ||||
CVE-2024-34652 | 1 Samsung | 1 Android | 2024-09-05 | 4 Medium |
Incorrect authorization in kperfmon prior to SMR Sep-2024 Release 1 allows local attackers to access information related to performance including app usage. | ||||
CVE-2023-30739 | 1 Samsung | 1 Android | 2024-09-04 | 6.7 Medium |
Arbitrary File Descriptor Write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. | ||||
CVE-2023-42528 | 1 Samsung | 1 Android | 2024-09-04 | 6.7 Medium |
Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. | ||||
CVE-2023-42529 | 1 Samsung | 1 Android | 2024-09-04 | 6.7 Medium |
Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to execute arbitrary code. | ||||
CVE-2023-42530 | 1 Samsung | 1 Android | 2024-09-04 | 6.7 Medium |
Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows attackers to enable Wi-Fi and Wi-Fi Direct without User Interaction. | ||||
CVE-2023-42533 | 1 Samsung | 1 Android | 2024-09-04 | 6.6 Medium |
Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel. | ||||
CVE-2023-42535 | 1 Samsung | 1 Android | 2024-09-04 | 8.4 High |
Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. | ||||
CVE-2023-42527 | 1 Samsung | 1 Android | 2024-09-04 | 5.6 Medium |
Improper input validation vulnerability in ProcessWriteFile of libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to expose sensitive information. | ||||
CVE-2023-42532 | 1 Samsung | 1 Android | 2024-09-04 | 5.9 Medium |
Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote attacker to intercept the network traffic including Firmware information. | ||||
CVE-2023-42534 | 1 Samsung | 1 Android | 2024-09-04 | 6.3 Medium |
Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arbitrary files with system privilege. | ||||
CVE-2024-20815 | 1 Samsung | 1 Android | 2024-08-19 | 8 High |
Improper authentication vulnerability in onCharacteristicReadRequest in Auto Hotspot prior to SMR Feb-2024 Release 1 allows adjacent attackers connect to victim's mobile hotspot without user awareness. | ||||
CVE-2024-34620 | 1 Samsung | 1 Android | 2024-08-12 | 8.4 High |
Improper privilege management in SumeNNService prior to SMR Aug-2024 Release 1 allows local attackers to start privileged service. | ||||
CVE-2024-34619 | 2 Samsung, Samsung Mobile | 2 Android, Samsung Mobile Devices | 2024-08-12 | 7.5 High |
Improper input validation in librtp.so prior to SMR Aug-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability. |