Total
447 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-42567 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.3 HIGH |
|
Improper size check vulnerability in softsimd prior to SMR Dec-2023 Release 1 allows stack-based buffer overflow.
|
|||||
| CVE-2023-42566 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.3 HIGH |
|
Out-of-bound write vulnerability in libsavsvc prior to SMR Dec-2023 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2023-42565 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.3 HIGH |
|
Improper input validation vulnerability in Smart Clip prior to SMR Dec-2023 Release 1 allows local attackers with shell privilege to execute arbitrary code.
|
|||||
| CVE-2023-42564 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.6 MEDIUM |
|
Improper access control in knoxcustom service prior to SMR Dec-2023 Release 1 allows attacker to send broadcast with system privilege.
|
|||||
| CVE-2023-42563 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Integer overflow vulnerability in landmarkCopyImageToNative of libFacePreProcessingjni.camera.samsung.so prior to SMR Dec-2023 Release 1 allows attacker to trigger heap overflow.
|
|||||
| CVE-2023-42562 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Integer overflow vulnerability in detectionFindFaceSupportMultiInstance of libFacePreProcessingjni.camera.samsung.so prior to SMR Dec-2023 Release 1 allows attacker to trigger heap overflow.
|
|||||
| CVE-2023-42561 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.1 HIGH |
|
Heap out-of-bounds write vulnerability in bootloader prior to SMR Dec-2023 Release 1 allows a physical attacker to execute arbitrary code.
|
|||||
| CVE-2023-42560 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.4 HIGH |
|
Heap out-of-bounds write vulnerability in dec_mono_audb of libsavsac.so prior to SMR Dec-2023 Release 1 allows an attacker to execute arbitrary code.
|
|||||
| CVE-2023-42559 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.9 MEDIUM |
|
Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time.
|
|||||
| CVE-2023-42558 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.0 MEDIUM |
|
Out of bounds write vulnerability in HDCP in HAL prior to SMR Dec-2023 Release 1 allows attacker to perform code execution.
|
|||||
| CVE-2023-42557 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.6 MEDIUM |
|
Out-of-bound write vulnerability in libIfaaCa prior to SMR Dec-2023 Release 1 allows local system attackers to execute arbitrary code.
|
|||||
| CVE-2023-42556 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 3.3 LOW |
|
Improper usage of implicit intent in Contacts prior to SMR Dec-2023 Release 1 allows attacker to get sensitive information.
|
|||||
| CVE-2023-42552 | 1 Samsung | 2 Android, Firewall | 2024-11-21 | N/A | 4.4 MEDIUM |
|
Implicit intent hijacking vulnerability in Firewall application prior to versions 12.1.00.24 in Android 11, 13.1.00.16 in Android 12 and 14.1.00.7 in Android 13 allows 3rd party application to tamper the database of Firewall.
|
|||||
| CVE-2023-42545 | 1 Samsung | 2 Android, Phone | 2024-11-21 | N/A | 5.5 MEDIUM |
|
Use of implicit intent for sensitive communication vulnerability in Phone prior to versions 12.7.20.12 in Android 11, 13.1.48, 13.5.28 in Android 12, and 14.7.38 in Android 13 allows attackers to access location data.
|
|||||
| CVE-2023-42538 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.9 MEDIUM |
|
An improper input validation in saped_rec_silence in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write.
|
|||||
| CVE-2023-42537 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.4 HIGH |
|
An improper input validation in get_head_crc in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write.
|
|||||
| CVE-2023-42536 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.4 HIGH |
|
An improper input validation in saped_dec in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write.
|
|||||
| CVE-2023-42535 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.4 HIGH |
|
Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2023-42534 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.3 MEDIUM |
|
Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arbitrary files with system privilege.
|
|||||
| CVE-2023-42533 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.6 MEDIUM |
|
Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel.
|
|||||
| CVE-2023-42532 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.9 MEDIUM |
|
Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote attacker to intercept the network traffic including Firmware information.
|
|||||
| CVE-2023-42531 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Improper access control vulnerability in SmsController prior to SMR Nov-2023 Release1 allows local attackers to bypass restrictions on starting activities from the background.
|
|||||
| CVE-2023-42530 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows attackers to enable Wi-Fi and Wi-Fi Direct without User Interaction.
|
|||||
| CVE-2023-42529 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2023-42528 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2023-42527 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.6 MEDIUM |
|
Improper input validation vulnerability in ProcessWriteFile of libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to expose sensitive information.
|
|||||
| CVE-2023-30739 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Arbitrary File Descriptor Write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2023-30733 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.8 HIGH |
|
Stack-based Buffer Overflow in vulnerability HDCP trustlet prior to SMR Oct-2023 Release 1 allows local privileged attackers to perform code execution.
|
|||||
| CVE-2023-30732 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.5 MEDIUM |
|
Improper access control in system property prior to SMR Oct-2023 Release 1 allows local attacker to get CPU serial number.
|
|||||
| CVE-2023-30731 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.7 MEDIUM |
|
Logic error in package installation via debugger command prior to SMR Oct-2023 Release 1 allows physical attacker to install an application that has different build type.
|
|||||
| CVE-2023-30727 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Improper access control vulnerability in SecSettings prior to SMR Oct-2023 Release 1 allows attackers to enable Wi-Fi and connect arbitrary Wi-Fi without User Interaction.
|
|||||
| CVE-2023-30721 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.4 MEDIUM |
|
Insertion of sensitive information into log vulnerability in Locksettings prior to SMR Sep-2023 Release 1 allows a privileged local attacker to get lock screen match information from the log.
|
|||||
| CVE-2023-30720 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.7 MEDIUM |
|
PendingIntent hijacking in LmsAssemblyTrackerCTC prior to SMR Sep-2023 Release 1 allows local attacker to gain arbitrary file access.
|
|||||
| CVE-2023-30719 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Exposure of Sensitive Information vulnerability in InboundSmsHandler prior to SMR Sep-2023 Release 1 allows local attackers to access certain message data.
|
|||||
| CVE-2023-30718 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Improper export of android application components vulnerability in WifiApAutoHotspotEnablingActivity prior to SMR Sep-2023 Release 1 allows local attacker to change a Auto Hotspot setting.
|
|||||
| CVE-2023-30717 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Sensitive information exposure vulnerability in SVCAgent prior to SMR Sep-2023 Release 1 allows attackers to get unresettable identifiers.
|
|||||
| CVE-2023-30716 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Improper access control vulnerability in SVCAgent prior to SMR Sep-2023 Release 1 allows attackers to trigger certain commands.
|
|||||
| CVE-2023-30715 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Improper access control vulnerability in Weather prior to SMR Sep-2023 Release 1 allows attackers to access location information set in Weather without permission.
|
|||||
| CVE-2023-30714 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.6 MEDIUM |
|
Improper authorization vulnerability in FolderContainerDragDelegate in One UI Home prior to SMR Sep-2023 Release 1 allows physical attackers to change some settings of the folder lock.
|
|||||
| CVE-2023-30713 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Improper privilege management vulnerability in FolderLockNotifier in One UI Home prior to SMR Sep-2023 Release 1 allows local attackers to change some settings of the folder lock.
|
|||||