Filtered by vendor Samsung Subscriptions
Total 1094 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-40293 1 Samsung 1 Harman Infotainment 2024-10-09 6.8 Medium
Harman Infotainment 20190525031613 and later allows command injection via unauthenticated RPC with a D-Bus connection object.
CVE-2023-30705 1 Samsung 1 Galaxy Store 2024-10-08 6.8 Medium
Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.56.6?allows local attackers to access privileged content providers as Galaxy Store permission.
CVE-2023-30683 1 Samsung 1 Android 2024-10-04 4.3 Medium
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call endCall API without permission.
CVE-2023-30682 1 Samsung 1 Android 2024-10-04 4.3 Medium
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call silenceRinger API without permission.
CVE-2023-30681 1 Samsung 1 Android 2024-10-04 4.4 Medium
An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.
CVE-2023-30684 1 Samsung 1 Android 2024-10-04 4.3 Medium
Improper access control in Samsung Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call acceptRingingCall API without permission.
CVE-2023-30685 1 Samsung 1 Android 2024-10-04 4.3 Medium
Improper access control vulnerability in Telecom prior to SMR Aug-2023 Release 1 allows local attakcers to change TTY mode.
CVE-2023-30704 1 Samsung 1 Internet 2024-10-04 3.8 Low
Improper Authorization vulnerability in Samsung Internet prior to version 22.0.0.35 allows physical attacker access downloaded files in Secret Mode without user authentication.
CVE-2023-30703 1 Samsung 1 Members 2024-10-04 3.3 Low
Improper URL validation vulnerability in Samsung Members prior to version 14.0.07.1 allows attackers to access sensitive information.
CVE-2023-30701 1 Samsung 1 Android 2024-10-04 4.7 Medium
PendingIntent hijacking in WifiGeofenceManager prior to SMR Aug-2023 Release 1 allows local attacker to arbitrary file access.
CVE-2023-30700 1 Samsung 1 Android 2024-10-04 5.3 Medium
PendingIntent hijacking vulnerability in SemWifiApTimeOutImpl in framework prior to SMR Aug-2023 Release 1 allows local attackers to access ContentProvider without proper permission.
CVE-2023-30698 1 Samsung 1 Android 2024-10-04 5.5 Medium
Improper access control vulnerability in TelephonyUI prior to SMR Aug-2023 Release 1 allows local attacker to connect BLE without privilege.
CVE-2023-30697 1 Samsung 1 Android 2024-10-04 4.4 Medium
An improper input validation in IpcTxCfgSetSimlockPayload in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.
CVE-2023-30696 1 Samsung 1 Android 2024-10-04 4.4 Medium
An improper input validation in IpcTxGetVerifyAkey in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.
CVE-2020-22181 1 Samsung 2 Sww-3400rw, Sww-3400rw Firmware 2024-10-03 6.1 Medium
A reflected cross site scripting (XSS) vulnerability was discovered on Samsung sww-3400rw Router devices via the m2 parameter of the sess-bin/command.cgi
CVE-2021-35309 1 Samsung 1 Syncthru Web Service 2024-10-03 7.5 High
An issue discovered in Samsung SyncThru Web Service SPL 5.93 06-09-2014 allows attackers to gain escalated privileges via MITM attacks.
CVE-2023-36481 1 Samsung 27 Exynos, Exynos 1080, Exynos 1080 Firmware and 24 more 2024-10-02 7.5 High
An issue was discovered in Samsung Exynos Mobile Processor and Wearable Processor 9810, 9610, 9820, 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, 9110, and W920. Improper handling of PPP length parameter inconsistency can cause an infinite loop.
CVE-2023-30706 1 Samsung 1 Android 2024-09-26 7.5 High
Improper authorization in Samsung Keyboard prior to SMR Sep-2023 Release 1 allows attacker to read arbitrary file with system privilege.
CVE-2023-30729 1 Samsung 1 Email 2024-09-26 8.1 High
Improper Certificate Validation in Samsung Email prior to version 6.1.82.0 allows remote attacker to intercept the network traffic including sensitive information.
CVE-2023-37367 1 Samsung 24 Exynos 1080, Exynos 1080 Firmware, Exynos 1280 and 21 more 2024-09-26 5.3 Medium
An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor, and Modem (Exynos 9820, Exynos 980, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. In the NAS Task, an improperly implemented security check for standard can disallow desired services for a while via consecutive NAS messages.