Filtered by vendor Samsung
Subscriptions
Total
1082 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-21430 | 1 Samsung | 1 Android | 2024-08-02 | 4.4 Medium |
| An out-of-bound read vulnerability in mapToBuffer function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR JAN-2023 Release 1 allows attacker to cause memory access fault. | ||||
| CVE-2023-21427 | 1 Samsung | 1 Android | 2024-08-02 | 5.4 Medium |
| Improper access control vulnerability in NfcTile prior to SMR Jan-2023 Release 1 allows to attacker to use NFC without user recognition. | ||||
| CVE-2023-21420 | 1 Samsung | 1 Android | 2024-08-02 | 7.3 High |
| Use of Externally-Controlled Format String vulnerabilities in STST TA prior to SMR Jan-2023 Release 1 allows arbitrary code execution. | ||||
| CVE-2023-21424 | 1 Samsung | 1 Android | 2024-08-02 | 5.1 Medium |
| Improper Handling of Insufficient Permissions or Privileges vulnerability in SemChameleonHelper prior to SMR Jan-2023 Release 1 allows attacker to modify network related values, network code, carrier id and operator brand. | ||||
| CVE-2024-34588 | 1 Samsung | 1 Android | 2024-08-02 | 5.3 Medium |
| Improper input validation혻in parsing RTCP SR packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to trigger temporary denial of service. User interaction is required for triggering this vulnerability. | ||||
| CVE-2024-34600 | 1 Samsung | 1 Flow | 2024-08-02 | 4.4 Medium |
| Improper verification of intent by broadcast receiver vulnerability in Samsung Flow prior to version 4.9.13.0 allows local attackers to copy image files to external storage. | ||||
| CVE-2024-34599 | 2 Google, Samsung | 2 Android, Tips | 2024-08-02 | 4 Medium |
| Improper input validation in Tips prior to version 6.2.9.4 in Android 14 allows local attacker to send broadcast with Tips' privilege. | ||||
| CVE-2024-34589 | 1 Samsung | 1 Android | 2024-08-02 | 5.3 Medium |
| Improper input validation in parsing RTCP RR packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to trigger temporary denial of service. User interaction is required for triggering this vulnerability. | ||||
| CVE-2024-34592 | 1 Samsung | 1 Android | 2024-08-02 | 5.3 Medium |
| Improper input validation in parsing RTCP SDES packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to trigger temporary denial of service. User interaction is required for triggering this vulnerability. | ||||
| CVE-2024-34597 | 1 Samsung | 1 Health | 2024-08-02 | 4.4 Medium |
| Improper input validation in Samsung Health prior to version 6.27.0.113 allows local attackers to write arbitrary document files to the sandbox of Samsung Health. User interaction is required for triggering this vulnerability. | ||||
| CVE-2024-34593 | 1 Samsung | 1 Android | 2024-08-02 | 7.5 High |
| Improper input validation in parsing and distributing RTCP packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability. | ||||
| CVE-2024-34595 | 1 Samsung | 1 Android | 2024-08-02 | 7.8 High |
| Improper access control in clickAdapterItem of SystemUI prior to SMR Jul-2024 Release 1 allows local attackers to launch privileged activities. | ||||
| CVE-2024-34603 | 1 Samsung | 1 Android | 2024-08-02 | 4 Medium |
| Improper access control in Samsung Message prior to SMR Jul-2024 Release 1 allows local attackers to access location data. | ||||
| CVE-2024-34590 | 1 Samsung | 1 Android | 2024-08-02 | 5.3 Medium |
| Improper input validation혻in parsing an item type from RTCP SDES packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to trigger temporary denial of service. User interaction is required for triggering this vulnerability. | ||||
| CVE-2024-34602 | 1 Samsung | 1 Android | 2024-08-02 | 3.3 Low |
| Use of implicit intent for sensitive communication in Samsung Messages prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information. User interaction is required for triggering this vulnerability. | ||||
| CVE-2024-34596 | 1 Samsung | 1 Smartthings | 2024-08-02 | 5.9 Medium |
| Improper authentication in SmartThings prior to version 1.8.17 allows remote attackers to bypass the expiration date for members set by the owner. | ||||
| CVE-2024-34587 | 1 Samsung | 1 Android | 2024-08-02 | 7.5 High |
| Improper input validation in parsing application information from RTCP packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability. | ||||
| CVE-2024-34594 | 1 Samsung | 1 Android | 2024-08-02 | 5.5 Medium |
| Exposure of sensitive information in proc file system prior to SMR Jul-2024 Release 1 allows local attackers to read kernel memory address. | ||||
| CVE-2024-34586 | 1 Samsung | 1 Android | 2024-08-02 | 5.9 Medium |
| Improper access control in KnoxCustomManagerService prior to SMR Jul-2024 Release 1 allows local attackers to configure Knox privacy policy. | ||||
| CVE-2024-34583 | 1 Samsung | 1 Android | 2024-08-02 | 4 Medium |
| Improper access control in system property prior to SMR Jul-2024 Release 1 allows local attackers to get device identifier. | ||||