Total
447 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-30660 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Exposure of Sensitive Information vulnerability in getDefaultChipId in UwbAospAdapterService prior to SMR Jul-2023 Release 1 allows local attackers to access the UWB chipset Identifier.
|
|||||
| CVE-2023-30659 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Improper input validation vulnerability in Transaction prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities.
|
|||||
| CVE-2023-30658 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.5 HIGH |
|
Improper input validation vulnerability in DataProfile prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities.
|
|||||
| CVE-2023-30657 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Improper input validation vulnerability in EnhancedAttestationResult prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities.
|
|||||
| CVE-2023-30656 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.5 HIGH |
|
Improper input validation vulnerability in LSOItemData prior to SMR Jul-2023 Release 1 allows attackers to launch certain activities.
|
|||||
| CVE-2023-30655 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.5 HIGH |
|
Improper input validation vulnerability in SCEPProfile prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities.
|
|||||
| CVE-2023-30654 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Improper access control vulnerability in SLocationService prior to SMR Aug-2023 Release 1 allows local attacker to update fake location.
|
|||||
| CVE-2023-30653 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2023-30652 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out of bounds read and write in callrunTspCmdNoRead of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2023-30651 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2023-30650 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2023-30649 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.8 HIGH |
|
Heap out of bound write vulnerability in RmtUimNeedApdu of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.
|
|||||
| CVE-2023-30648 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 3.3 LOW |
|
Stack out-of-bounds write vulnerability in IpcRxImeiUpdateImeiNoti of RILD priro to SMR Jul-2023 Release 1 cause a denial of service on the system.
|
|||||
| CVE-2023-30647 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.8 HIGH |
|
Heap out of bound write vulnerability in IpcRxUsimPhoneBookCapa of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.
|
|||||
| CVE-2023-30646 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.8 HIGH |
|
Heap out of bound write vulnerability in BroadcastSmsConfig of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.
|
|||||
| CVE-2023-30645 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.8 HIGH |
|
Heap out of bound write vulnerability in IpcRxIncomingCBMsg of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.
|
|||||
| CVE-2023-30644 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.8 HIGH |
|
Stack out of bound write vulnerability in CdmaSmsParser of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.
|
|||||
| CVE-2023-30643 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.7 HIGH |
|
Missing authentication vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to delete arbitrary non-preloaded applications.
|
|||||
| CVE-2023-30642 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Improper privilege management vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to call privilege function.
|
|||||
| CVE-2023-30641 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Improper access control vulnerability in Settings prior to SMR Jul-2023 Release 1 allows physical attacker to use restricted user profile to access device owner's google account data.
|
|||||
| CVE-2023-30640 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Improper access control vulnerability in PersonaManagerService prior to SMR Jul-2023 Release 1 allows local attackers to change confiugration.
|
|||||
| CVE-2023-21512 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 2.4 LOW |
|
Improper Knox ID validation logic in notification framework prior to SMR Jun-2023 Release 1 allows local attackers to read work profile notifications without proper access permission.
|
|||||
| CVE-2023-21504 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.6 MEDIUM |
|
Potential buffer overflow vulnerability in mm_Plmncoordination.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access.
|
|||||
| CVE-2023-21503 | 1 Samsung | 2 Android, Exynos | 2024-11-21 | N/A | 5.6 MEDIUM |
|
Potential buffer overflow vulnerability in mm_LteInterRatManagement.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access.
|
|||||
| CVE-2023-21502 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.7 MEDIUM |
|
Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands.
|
|||||
| CVE-2023-21501 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.2 HIGH |
|
Improper input validation vulnerability in mPOS fiserve trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2023-21500 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.0 MEDIUM |
|
Double free validation vulnerability in setPinPadImages in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to access the trustlet memory.
|
|||||
| CVE-2023-21499 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.2 HIGH |
|
Out-of-bounds write vulnerability in TA_Communication_mpos_encrypt_pin in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2023-21498 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.0 MEDIUM |
|
Improper input validation vulnerability in setPartnerTAInfo in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to overwrite the trustlet memory.
|
|||||
| CVE-2023-21497 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.4 MEDIUM |
|
Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to access the memory address.
|
|||||
| CVE-2023-21496 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.1 MEDIUM |
|
Active Debug Code vulnerability in ActivityManagerService prior to SMR May-2023 Release 1 allows attacker to use debug function via setting debug level.
|
|||||
| CVE-2023-21495 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.0 MEDIUM |
|
Improper access control vulnerability in Knox Enrollment Service prior to SMR May-2023 Release 1 allow attacker install KSP app when device admin is set.
|
|||||
| CVE-2023-21494 | 1 Samsung | 2 Android, Exynos | 2024-11-21 | N/A | 5.6 MEDIUM |
|
Potential buffer overflow vulnerability in auth api in mm_Authentication.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access.
|
|||||
| CVE-2023-21493 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 6.8 MEDIUM |
|
Improper access control vulnerability in SemShareFileProvider prior to SMR May-2023 Release 1 allows local attackers to access protected data.
|
|||||
| CVE-2023-21491 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 8.5 HIGH |
|
Improper access control vulnerability in ThemeManager prior to SMR May-2023 Release 1 allows local attackers to write arbitrary files with system privilege.
|
|||||
| CVE-2023-21490 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.7 MEDIUM |
|
Improper access control in GearManagerStub prior to SMR May-2023 Release 1 allows a local attacker to delete applications installed by watchmanager.
|
|||||
| CVE-2023-21489 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 7.1 HIGH |
|
Heap out-of-bounds write vulnerability in bootloader prior to SMR May-2023 Release 1 allows a physical attacker to execute arbitrary code.
|
|||||
| CVE-2023-21488 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 4.4 MEDIUM |
|
Improper access control vulnerablility in Tips prior to SMR May-2023 Release 1 allows local attackers to launch arbitrary activity in Tips.
|
|||||
| CVE-2023-21487 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.1 MEDIUM |
|
Improper access control vulnerability in Telephony framework prior to SMR May-2023 Release 1 allows local attackers to change a call setting.
|
|||||
| CVE-2023-21486 | 1 Samsung | 1 Android | 2024-11-21 | N/A | 5.3 MEDIUM |
|
Improper export of android application components vulnerability in ImagePreviewActivity in Call Settings to SMR May-2023 Release 1 allows physical attackers to access some media data stored in sandbox.
|
|||||