Filtered by vendor Samsung Subscriptions
Total 1109 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-40218 1 Samsung 12 Exynos 1280, Exynos 1280 Firmware, Exynos 1380 and 9 more 2024-09-26 2 Low
An issue was discovered in the NPU kernel driver in Samsung Exynos Mobile Processor 9820, 980, 2100, 2200, 1280, and 1380. An integer overflow can bypass detection of error cases via a crafted application.
CVE-2024-31960 2 Samsung, Samsung Mobile 5 Exynos 1480, Exynos 1480 Firmware, Exynos 2400 and 2 more 2024-09-24 7.8 High
An issue was discovered in Samsung Mobile Processor Exynos 1480, Exynos 2400. The xclipse amdgpu driver has a reference count bug. This can lead to a use after free.
CVE-2023-42482 1 Samsung 2 Exynos 2200, Exynos 2200 Firmware 2024-09-24 4.7 Medium
Samsung Mobile Processor Exynos 2200 allows a GPU Use After Free.
CVE-2023-41911 1 Samsung 2 Exynos 2200, Exynos 2200 Firmware 2024-09-23 4.7 Medium
Samsung Mobile Processor Exynos 2200 allows a GPU Double Free (issue 1 of 2).
CVE-2024-27365 1 Samsung 18 Exynos 1080, Exynos 1080 Firmware, Exynos 1280 and 15 more 2024-09-20 4.4 Medium
An issue was discovered in Samsung Mobile Processor Exynos Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_blockack_ind(), there is no input validation check on a length coming from userspace, which can lead to a potential heap over-read.
CVE-2023-30690 1 Samsung 1 Android 2024-09-19 8.5 High
Improper input validation vulnerability in Duo prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities.
CVE-2023-30692 1 Samsung 1 Android 2024-09-19 8.5 High
Improper input validation vulnerability in Evaluator prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities.
CVE-2023-30727 1 Samsung 1 Android 2024-09-19 6.7 Medium
Improper access control vulnerability in SecSettings prior to SMR Oct-2023 Release 1 allows attackers to enable Wi-Fi and connect arbitrary Wi-Fi without User Interaction.
CVE-2023-30731 1 Samsung 1 Android 2024-09-19 5.7 Medium
Logic error in package installation via debugger command prior to SMR Oct-2023 Release 1 allows physical attacker to install an application that has different build type.
CVE-2023-30732 1 Samsung 1 Android 2024-09-19 5.5 Medium
Improper access control in system property prior to SMR Oct-2023 Release 1 allows local attacker to get CPU serial number.
CVE-2023-30734 1 Samsung 1 Health 2024-09-19 4 Medium
Improper access control vulnerability in Samsung Health prior to version 6.24.3.007 allows attackers to access sensitive information via implicit intent.
CVE-2023-30735 1 Samsung 1 Sassistant 2024-09-19 5.1 Medium
Improper Preservation of Permissions vulnerability in SAssistant prior to version 8.7 allows local attackers to access backup data in SAssistant.
CVE-2023-30736 1 Samsung 1 Samsung Assistant 2024-09-19 4.4 Medium
Improper authorization in PushMsgReceiver of Samsung Assistant prior to version 8.7.00.1 allows attacker to execute javascript interface. To trigger this vulnerability, user interaction is required.
CVE-2023-30737 1 Samsung 1 Health 2024-09-19 4 Medium
Improper access control vulnerability in Samsung Health prior to version 6.24.3.007 allows attackers to access sensitive information via implicit intent.
CVE-2023-30738 1 Samsung 8 Galaxy Book, Galaxy Book Firmware, Galaxy Book Odyssey and 5 more 2024-09-19 5.5 Medium
An improper input validation in UEFI Firmware prior to Firmware update Oct-2023 Release in Galaxy Book, Galaxy Book Pro, Galaxy Book Pro 360 and Galaxy Book Odyssey allows local attacker to execute SMM memory corruption.
CVE-2023-42539 1 Samsung 1 Health 2024-09-17 4.7 Medium
PendingIntent hijacking vulnerability in ChallengeNotificationManager in Samsung Health prior to version 6.25 allows local attackers to access data.
CVE-2023-42543 1 Samsung 1 Bixby Voice 2024-09-17 6.2 Medium
Improper verification of intent by broadcast receiver vulnerability in Bixby Voice prior to version 3.3.35.12 allows attackers to access arbitrary data with Bixby Voice privilege.
CVE-2023-42544 1 Samsung 1 Quick Share 2024-09-17 5.5 Medium
Improper access control vulnerability in Quick Share prior to 13.5.52.0 allows local attacker to access local files.
CVE-2023-42545 1 Samsung 2 Android, Phone 2024-09-17 5.5 Medium
Use of implicit intent for sensitive communication vulnerability in Phone prior to versions 12.7.20.12 in Android 11, 13.1.48, 13.5.28 in Android 12, and 14.7.38 in Android 13 allows attackers to access location data.
CVE-2023-42546 1 Samsung 1 Account 2024-09-17 5.5 Medium
Use of implicit intent for sensitive communication vulnerability in startAgreeToDisclaimerActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.