Filtered by vendor Samsung
Subscribe
Total
1539 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-30720 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.7 MEDIUM |
|
PendingIntent hijacking in LmsAssemblyTrackerCTC prior to SMR Sep-2023 Release 1 allows local attacker to gain arbitrary file access.
|
|||||
| CVE-2023-30719 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Exposure of Sensitive Information vulnerability in InboundSmsHandler prior to SMR Sep-2023 Release 1 allows local attackers to access certain message data.
|
|||||
| CVE-2023-30718 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Improper export of android application components vulnerability in WifiApAutoHotspotEnablingActivity prior to SMR Sep-2023 Release 1 allows local attacker to change a Auto Hotspot setting.
|
|||||
| CVE-2023-30717 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Sensitive information exposure vulnerability in SVCAgent prior to SMR Sep-2023 Release 1 allows attackers to get unresettable identifiers.
|
|||||
| CVE-2023-30716 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Improper access control vulnerability in SVCAgent prior to SMR Sep-2023 Release 1 allows attackers to trigger certain commands.
|
|||||
| CVE-2023-30715 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Improper access control vulnerability in Weather prior to SMR Sep-2023 Release 1 allows attackers to access location information set in Weather without permission.
|
|||||
| CVE-2023-30714 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.6 MEDIUM |
|
Improper authorization vulnerability in FolderContainerDragDelegate in One UI Home prior to SMR Sep-2023 Release 1 allows physical attackers to change some settings of the folder lock.
|
|||||
| CVE-2023-30713 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Improper privilege management vulnerability in FolderLockNotifier in One UI Home prior to SMR Sep-2023 Release 1 allows local attackers to change some settings of the folder lock.
|
|||||
| CVE-2023-30712 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.8 MEDIUM |
|
Improper input validation in Settings Suggestions prior to SMR Sep-2023 Release 1 allows attackers to launch arbitrary activity.
|
|||||
| CVE-2023-30711 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Improper authentication in Phone and Messaging Storage SMR SEP-2023 Release 1 allows attacker to insert arbitrary data to the provider.
|
|||||
| CVE-2023-30710 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.5 HIGH |
|
Improper input validation vulnerability in Knox AI prior to SMR Sep-2023 Release 1 allows local attackers to launch privileged activities.
|
|||||
| CVE-2023-30709 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.9 HIGH |
|
Improper access control in Dual Messenger prior to SMR Sep-2023 Release 1 allows local attackers launch activity with system privilege.
|
|||||
| CVE-2023-30708 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.6 MEDIUM |
|
Improper authentication in SecSettings prior to SMR Sep-2023 Release 1 allows attacker to access Captive Portal Wi-Fi in Reactivation Lock status.
|
|||||
| CVE-2023-30707 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Improper input validation vulnerability in FileProviderStatusReceiver in Samsung Keyboard prior to SMR Sep-2023 Release 1 allows local attackers to delete arbitrary files with Samsung Keyboard privilege.
|
|||||
| CVE-2023-30706 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.5 HIGH |
|
Improper authorization in Samsung Keyboard prior to SMR Sep-2023 Release 1 allows attacker to read arbitrary file with system privilege.
|
|||||
| CVE-2023-30705 | 1 Samsung | 1 Galaxy Store | 2024-11-21 | N/A | 6.8 MEDIUM |
|
Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.56.6?allows local attackers to access privileged content providers as Galaxy Store permission.
|
|||||
| CVE-2023-30704 | 1 Samsung | 1 Internet | 2024-11-21 | N/A | 3.8 LOW |
|
Improper Authorization vulnerability in Samsung Internet prior to version 22.0.0.35 allows physical attacker access downloaded files in Secret Mode without user authentication.
|
|||||
| CVE-2023-30703 | 1 Samsung | 1 Members | 2024-11-21 | N/A | 3.3 LOW |
|
Improper URL validation vulnerability in Samsung Members prior to version 14.0.07.1 allows attackers to access sensitive information.
|
|||||
| CVE-2023-30702 | 1 Samsung | 8 Galaxy Book2 Go, Galaxy Book2 Go Firmware, Galaxy Book2 Pro 360 and 5 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Stack overflow vulnerability in SSHDCPAPP TA prior to "SAMSUNG ELECTONICS, CO, LTD. - System Hardware Update - 7/13/2023" in Windows Update for Galaxy book Go, Galaxy book Go 5G, Galaxy book2 Go and Galaxy book2 Pro 360 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2023-30701 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.7 MEDIUM |
|
PendingIntent hijacking in WifiGeofenceManager prior to SMR Aug-2023 Release 1 allows local attacker to arbitrary file access.
|
|||||
| CVE-2023-30700 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.3 MEDIUM |
|
PendingIntent hijacking vulnerability in SemWifiApTimeOutImpl in framework prior to SMR Aug-2023 Release 1 allows local attackers to access ContentProvider without proper permission.
|
|||||
| CVE-2023-30699 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.5 HIGH |
|
Out-of-bounds write vulnerability in parser_hvcC function of libsimba library prior to SMR Aug-2023 Release 1 allows code execution by remote attackers.
|
|||||
| CVE-2023-30698 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.5 MEDIUM |
|
Improper access control vulnerability in TelephonyUI prior to SMR Aug-2023 Release 1 allows local attacker to connect BLE without privilege.
|
|||||
| CVE-2023-30697 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.4 MEDIUM |
|
An improper input validation in IpcTxCfgSetSimlockPayload in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.
|
|||||
| CVE-2023-30696 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.4 MEDIUM |
|
An improper input validation in IpcTxGetVerifyAkey in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.
|
|||||
| CVE-2023-30695 | 1 Samsung | 8 Galaxy Book2 Go, Galaxy Book2 Go Firmware, Galaxy Book2 Pro 360 and 5 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out-of-bounds Write vulnerability in SSHDCPAPP TA prior to "SAMSUNG ELECTONICS, CO, LTD. - System Hardware Update - 7/13/2023" in Windows Update for Galaxy book Go, Galaxy book Go 5G, Galaxy book2 Go and Galaxy book2 Pro 360 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2023-30694 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2023-30693 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2023-30692 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.5 HIGH |
|
Improper input validation vulnerability in Evaluator prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities.
|
|||||
| CVE-2023-30691 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.4 HIGH |
|
Parcel mismatch in AuthenticationConfig prior to SMR Aug-2023 Release 1 allows local attacker to privilege escalation.
|
|||||
| CVE-2023-30690 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.5 HIGH |
|
Improper input validation vulnerability in Duo prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities.
|
|||||
| CVE-2023-30689 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2023-30688 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2023-30687 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2023-30686 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2023-30685 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Improper access control vulnerability in Telecom prior to SMR Aug-2023 Release 1 allows local attakcers to change TTY mode.
|
|||||
| CVE-2023-30684 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Improper access control in Samsung Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call acceptRingingCall API without permission.
|
|||||
| CVE-2023-30683 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call endCall API without permission.
|
|||||
| CVE-2023-30682 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call silenceRinger API without permission.
|
|||||
| CVE-2023-30681 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.4 MEDIUM |
|
An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.
|
|||||