Filtered by vendor Samsung Subscriptions
Total 1085 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-30691 1 Samsung 2 Android, Samsung Mobile Devices 2024-10-11 8.4 High
Parcel mismatch in AuthenticationConfig prior to SMR Aug-2023 Release 1 allows local attacker to privilege escalation.
CVE-2023-30680 2 Samsung, Samsung Mobile 2 Android, Samsung Mobile Devices 2024-10-11 8.4 High
Improper privilege management vulnerability in MMIGroup prior to SMR Aug-2023 Release 1 allows code execution with privilege.
CVE-2023-42569 1 Samsung 1 Android 2024-10-11 4 Medium
Improper authorization verification vulnerability in AR Emoji prior to SMR Dec-2023 Release 1 allows attackers to read sandbox data of AR Emoji.
CVE-2023-30679 1 Samsung 1 Android 2024-10-10 7.8 High
Improper access control in HDCP trustlet prior to SMR Aug-2023 Release 1 allows local attackers to execute arbitrary code.
CVE-2023-30686 2 Samsung, Samsung Mobile 2 Android, Samsung Mobile Devices 2024-10-10 6.7 Medium
Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-30687 2 Samsung, Samsung Mobile 2 Android, Samsung Mobile Devices 2024-10-10 6.7 Medium
Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-30688 2 Samsung, Samsung Mobile 2 Android, Samsung Mobile Devices 2024-10-10 6.7 Medium
Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-30689 2 Samsung, Samsung Mobile 2 Android, Samsung Mobile Devices 2024-10-10 6.7 Medium
Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-30693 2 Samsung, Samsung Mobile 2 Android, Samsung Mobile Devices 2024-10-10 6.7 Medium
Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-30694 1 Samsung 1 Android 2024-10-10 6.7 Medium
Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-30702 2 Samsung, Samsung Mobile 12 Galaxy Book2 Go, Galaxy Book2 Go Firmware, Galaxy Book2 Pro 360 and 9 more 2024-10-10 6.7 Medium
Stack overflow vulnerability in SSHDCPAPP TA prior to "SAMSUNG ELECTONICS, CO, LTD. - System Hardware Update - 7/13/2023" in Windows Update for Galaxy book Go, Galaxy book Go 5G, Galaxy book2 Go and Galaxy book2 Pro 360 allows local attacker to execute arbitrary code.
CVE-2024-44068 1 Samsung 6 Exynos 850 Firmware, Exynos 980 Firmware, Exynos 9820 Firmware and 3 more 2024-10-10 8.1 High
An issue was discovered in the m2m scaler driver in Samsung Mobile Processor and Wearable Processor Exynos 9820, 9825, 980, 990, 850,and W920. A Use-After-Free in the mobile processor leads to privilege escalation.
CVE-2023-30699 1 Samsung 1 Android 2024-10-09 7.5 High
Out-of-bounds write vulnerability in parser_hvcC function of libsimba library prior to SMR Aug-2023 Release 1 allows code execution by remote attackers.
CVE-2023-40291 1 Samsung 1 Harman Infotainment 2024-10-09 6.8 Medium
Harman Infotainment 20190525031613 allows root access via SSH over a USB-to-Ethernet dongle with a password that is an internal project name.
CVE-2023-40292 1 Samsung 1 Harman Infotainment 2024-10-09 4.3 Medium
Harman Infotainment 20190525031613 and later discloses the IP address via CarPlay CTRL packets.
CVE-2023-40293 1 Samsung 1 Harman Infotainment 2024-10-09 6.8 Medium
Harman Infotainment 20190525031613 and later allows command injection via unauthenticated RPC with a D-Bus connection object.
CVE-2023-30705 1 Samsung 1 Galaxy Store 2024-10-08 6.8 Medium
Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.56.6?allows local attackers to access privileged content providers as Galaxy Store permission.
CVE-2023-30683 1 Samsung 1 Android 2024-10-04 4.3 Medium
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call endCall API without permission.
CVE-2023-30682 1 Samsung 1 Android 2024-10-04 4.3 Medium
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call silenceRinger API without permission.
CVE-2023-30681 1 Samsung 1 Android 2024-10-04 4.4 Medium
An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.