Filtered by vendor Samsung
Subscriptions
Total
1085 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2023-30691 | 1 Samsung | 2 Android, Samsung Mobile Devices | 2024-10-11 | 8.4 High |
Parcel mismatch in AuthenticationConfig prior to SMR Aug-2023 Release 1 allows local attacker to privilege escalation. | ||||
CVE-2023-30680 | 2 Samsung, Samsung Mobile | 2 Android, Samsung Mobile Devices | 2024-10-11 | 8.4 High |
Improper privilege management vulnerability in MMIGroup prior to SMR Aug-2023 Release 1 allows code execution with privilege. | ||||
CVE-2023-42569 | 1 Samsung | 1 Android | 2024-10-11 | 4 Medium |
Improper authorization verification vulnerability in AR Emoji prior to SMR Dec-2023 Release 1 allows attackers to read sandbox data of AR Emoji. | ||||
CVE-2023-30679 | 1 Samsung | 1 Android | 2024-10-10 | 7.8 High |
Improper access control in HDCP trustlet prior to SMR Aug-2023 Release 1 allows local attackers to execute arbitrary code. | ||||
CVE-2023-30686 | 2 Samsung, Samsung Mobile | 2 Android, Samsung Mobile Devices | 2024-10-10 | 6.7 Medium |
Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||||
CVE-2023-30687 | 2 Samsung, Samsung Mobile | 2 Android, Samsung Mobile Devices | 2024-10-10 | 6.7 Medium |
Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||||
CVE-2023-30688 | 2 Samsung, Samsung Mobile | 2 Android, Samsung Mobile Devices | 2024-10-10 | 6.7 Medium |
Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||||
CVE-2023-30689 | 2 Samsung, Samsung Mobile | 2 Android, Samsung Mobile Devices | 2024-10-10 | 6.7 Medium |
Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||||
CVE-2023-30693 | 2 Samsung, Samsung Mobile | 2 Android, Samsung Mobile Devices | 2024-10-10 | 6.7 Medium |
Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||||
CVE-2023-30694 | 1 Samsung | 1 Android | 2024-10-10 | 6.7 Medium |
Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||||
CVE-2023-30702 | 2 Samsung, Samsung Mobile | 12 Galaxy Book2 Go, Galaxy Book2 Go Firmware, Galaxy Book2 Pro 360 and 9 more | 2024-10-10 | 6.7 Medium |
Stack overflow vulnerability in SSHDCPAPP TA prior to "SAMSUNG ELECTONICS, CO, LTD. - System Hardware Update - 7/13/2023" in Windows Update for Galaxy book Go, Galaxy book Go 5G, Galaxy book2 Go and Galaxy book2 Pro 360 allows local attacker to execute arbitrary code. | ||||
CVE-2024-44068 | 1 Samsung | 6 Exynos 850 Firmware, Exynos 980 Firmware, Exynos 9820 Firmware and 3 more | 2024-10-10 | 8.1 High |
An issue was discovered in the m2m scaler driver in Samsung Mobile Processor and Wearable Processor Exynos 9820, 9825, 980, 990, 850,and W920. A Use-After-Free in the mobile processor leads to privilege escalation. | ||||
CVE-2023-30699 | 1 Samsung | 1 Android | 2024-10-09 | 7.5 High |
Out-of-bounds write vulnerability in parser_hvcC function of libsimba library prior to SMR Aug-2023 Release 1 allows code execution by remote attackers. | ||||
CVE-2023-40291 | 1 Samsung | 1 Harman Infotainment | 2024-10-09 | 6.8 Medium |
Harman Infotainment 20190525031613 allows root access via SSH over a USB-to-Ethernet dongle with a password that is an internal project name. | ||||
CVE-2023-40292 | 1 Samsung | 1 Harman Infotainment | 2024-10-09 | 4.3 Medium |
Harman Infotainment 20190525031613 and later discloses the IP address via CarPlay CTRL packets. | ||||
CVE-2023-40293 | 1 Samsung | 1 Harman Infotainment | 2024-10-09 | 6.8 Medium |
Harman Infotainment 20190525031613 and later allows command injection via unauthenticated RPC with a D-Bus connection object. | ||||
CVE-2023-30705 | 1 Samsung | 1 Galaxy Store | 2024-10-08 | 6.8 Medium |
Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.56.6?allows local attackers to access privileged content providers as Galaxy Store permission. | ||||
CVE-2023-30683 | 1 Samsung | 1 Android | 2024-10-04 | 4.3 Medium |
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call endCall API without permission. | ||||
CVE-2023-30682 | 1 Samsung | 1 Android | 2024-10-04 | 4.3 Medium |
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call silenceRinger API without permission. | ||||
CVE-2023-30681 | 1 Samsung | 1 Android | 2024-10-04 | 4.4 Medium |
An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write. |