Total
447 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-20958 | 1 Samsung | 1 Android | 2025-05-21 | N/A | 4.4 MEDIUM |
|
Improper verification of intent by broadcast receiver in UnifiedWFC prior to SMR May-2025 Release 1 allows local attackers to manipulate VoWiFi related behaviors.
|
|||||
| CVE-2025-20959 | 1 Samsung | 1 Android | 2025-05-21 | N/A | 5.1 MEDIUM |
|
Use of implicit intent for sensitive communication in Wi-Fi P2P service prior to SMR May-2025 Release 1 allows local attackers to access sensitive information.
|
|||||
| CVE-2025-20960 | 1 Samsung | 1 Android | 2025-05-21 | N/A | 4.0 MEDIUM |
|
Improper handling of insufficient permission in CocktailBarService prior to SMR May-2025 Release 1 allows local attackers to use the privileged api.
|
|||||
| CVE-2025-20961 | 1 Samsung | 1 Android | 2025-05-21 | N/A | 5.5 MEDIUM |
|
Improper handling of insufficient permission or privileges in sepunion service prior to SMR May-2025 Release 1 allows local privileged attackers to access files with system privilege.
|
|||||
| CVE-2025-20962 | 1 Samsung | 1 Android | 2025-05-21 | N/A | 4.0 MEDIUM |
|
Improper handling of insufficient permission in SpenGesture service prior to SMR May-2025 Release 1 allows local attackers to track the S Pen position.
|
|||||
| CVE-2025-20963 | 1 Samsung | 1 Android | 2025-05-21 | N/A | 6.6 MEDIUM |
|
Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory.
|
|||||
| CVE-2025-20964 | 1 Samsung | 1 Android | 2025-05-21 | N/A | 6.6 MEDIUM |
|
Out-of-bounds write in parsing media files in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory.
|
|||||
| CVE-2024-20813 | 1 Samsung | 1 Android | 2025-05-15 | N/A | 8.4 HIGH |
|
Out-of-bounds Write in padmd_vld_qtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2024-20812 | 1 Samsung | 1 Android | 2025-05-15 | N/A | 8.4 HIGH |
|
Out-of-bounds Write in padmd_vld_htbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2025-20954 | 1 Samsung | 1 Android | 2025-05-13 | N/A | 5.5 MEDIUM |
|
Use of implicit intent for sensitive communication in EnrichedCall prior to SMR May-2025 Release 1 allows local attackers to access sensitive information. User interaction is required for triggering this vulnerability.
|
|||||
| CVE-2025-20953 | 1 Samsung | 1 Android | 2025-05-13 | N/A | 5.1 MEDIUM |
|
Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch activities within SmartManagerCN.
|
|||||
| CVE-2025-20937 | 1 Samsung | 1 Android | 2025-05-13 | N/A | 6.7 MEDIUM |
|
Out-of-bounds write in Keymaster trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.
|
|||||
| CVE-2025-20934 | 1 Samsung | 1 Android | 2025-04-30 | N/A | 5.5 MEDIUM |
|
Improper access control in Sticker Center prior to SMR Apr-2025 Release 1 allows local attackers to access image files with system privilege.
|
|||||
| CVE-2025-20886 | 1 Samsung | 1 Android | 2025-03-25 | N/A | 4.1 MEDIUM |
|
Inclusion of sensitive information in test code in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to get test key.
|
|||||
| CVE-2025-20885 | 1 Samsung | 1 Android | 2025-03-25 | N/A | 6.4 MEDIUM |
|
Out-of-bounds write in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to cause memory corruption.
|
|||||
| CVE-2025-20907 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 6.0 MEDIUM |
|
Improper privilege management in Samsung Find prior to SMR Feb-2025 Release 1 allows local privileged attackers to disable Samsung Find.
|
|||||
| CVE-2025-20905 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 6.3 MEDIUM |
|
Out-of-bounds read and write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to read and write out-of-bounds memory.
|
|||||
| CVE-2025-20904 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 6.3 MEDIUM |
|
Out-of-bounds write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to cause memory corruption.
|
|||||
| CVE-2025-20893 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 5.1 MEDIUM |
|
Improper access control in NotificationManager prior to SMR Jan-2025 Release 1 allows local attackers to change the configuration of notifications.
|
|||||
| CVE-2025-20892 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 5.9 MEDIUM |
|
Protection Mechanism Failure in bootloader prior to SMR Jan-2025 Release 1 allows physical attackers to allow to execute fastboot command. User interaction is required for triggering this vulnerability.
|
|||||
| CVE-2025-20891 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 5.3 MEDIUM |
|
Out-of-bounds read in decoding malformed bitstream of video thumbnails in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability.
|
|||||
| CVE-2025-20890 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 7.0 HIGH |
|
Out-of-bounds write in decoding frame buffer in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.
|
|||||
| CVE-2025-20889 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 5.3 MEDIUM |
|
Out-of-bounds read in decoding malformed bitstream for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability.
|
|||||
| CVE-2025-20888 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 7.0 HIGH |
|
Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.
|
|||||
| CVE-2025-20887 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 5.3 MEDIUM |
|
Out-of-bounds read in accessing table used for svp8t in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability.
|
|||||
| CVE-2025-20884 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 4.6 MEDIUM |
|
Improper access control in Samsung Message prior to SMR Jan-2025 Release 1 allows physical attackers to access data across multiple user profiles.
|
|||||
| CVE-2025-20883 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 4.6 MEDIUM |
|
Improper access control in SoundPicker prior to SMR Jan-2025 Release 1 allows physical attackers to access data across multiple user profiles.
|
|||||
| CVE-2025-20882 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 7.0 HIGH |
|
Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.
|
|||||
| CVE-2025-20881 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 7.0 HIGH |
|
Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.
|
|||||
| CVE-2024-49411 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 4.3 MEDIUM |
|
Path Traversal in ThemeCenter prior to SMR Dec-2024 Release 1 allows physical attackers to copy apk files to arbitrary path with ThemeCenter privilege.
|
|||||
| CVE-2023-52432 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 5.9 MEDIUM |
|
Improper input validation in IpcTxSndSetLoopbackCtrl in libsec-ril prior to SMR Sep-2023 Release 1 allows local attackers to write out-of-bounds memory.
|
|||||
| CVE-2024-20885 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 5.1 MEDIUM |
|
Improper component protection vulnerability in Samsung Dialer prior to SMR May-2024 Release 1 allows local attackers to make a call without proper permission.
|
|||||
| CVE-2024-20884 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 6.2 MEDIUM |
|
Incorrect use of privileged API vulnerability in getSemBatteryUsageStats in BatteryStatsService prior to SMR Jun-2024 Release 1 allows local attackers to use privileged API.
|
|||||
| CVE-2024-20883 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 6.2 MEDIUM |
|
Incorrect use of privileged API vulnerability in registerBatteryStatsCallback in BatteryStatsService prior to SMR Jun-2024 Release 1 allows local attackers to use privileged API.
|
|||||
| CVE-2024-20882 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 4.6 MEDIUM |
|
Out-of-bounds read vulnerability in bootloader prior to SMR June-2024 Release 1 allows physical attackers to arbitrary data access.
|
|||||
| CVE-2024-20881 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 6.4 MEDIUM |
|
Improper input validation vulnerability in chnactiv TA prior to SMR Jun-2024 Release 1 allows local privileged attackers lead to potential arbitrary code execution.
|
|||||
| CVE-2024-20880 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 6.4 MEDIUM |
|
Stack-based buffer overflow vulnerability in bootloader prior to SMR Jun-2024 Release 1 allows physical attackers to overwrite memory.
|
|||||
| CVE-2024-20879 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 4.0 MEDIUM |
|
Improper input validation vulnerability in libsavscmn.so prior to SMR Jun-2024 Release 1 allows local attackers to write out-of-bounds memory.
|
|||||
| CVE-2024-20878 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 7.3 HIGH |
|
Heap out-of-bound write vulnerability in parsing grid image in libsavscmn.so prior to SMR June-2024 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2024-49410 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 5.9 MEDIUM |
|
Out-of-bounds write in libswmfextractor.so prior to SMR Dec-2024 Release 1 allows local attackers to execute arbitrary code.
|
|||||