Total
175 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-42577 | 1 Samsung | 2 Android, Samsung Voice Recorder | 2023-12-11 | N/A | 2.4 LOW |
Improper Access Control in Samsung Voice Recorder prior to versions 21.4.15.01 in Android 12 and Android 13, 21.4.50.17 in Android 14 allows physical attackers to access Voice Recorder information on the lock screen. | |||||
CVE-2023-42569 | 1 Samsung | 1 Android | 2023-12-11 | N/A | 3.3 LOW |
Improper authorization verification vulnerability in AR Emoji prior to SMR Dec-2023 Release 1 allows attackers to read sandbox data of AR Emoji. | |||||
CVE-2023-42570 | 1 Samsung | 1 Android | 2023-12-11 | N/A | 3.3 LOW |
Improper access control vulnerability in KnoxCustomManagerService prior to SMR Dec-2023 Release 1 allows attacker to access device SIM PIN. | |||||
CVE-2023-42560 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Heap out-of-bounds write vulnerability in dec_mono_audb of libsavsac.so prior to SMR Dec-2023 Release 1 allows an attacker to execute arbitrary code. | |||||
CVE-2023-42568 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 4.4 MEDIUM |
Improper access control vulnerability in SmartManagerCN prior to SMR Dec-2023 Release 1 allows local attackers to access arbitrary files with system privilege. | |||||
CVE-2023-42557 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 6.7 MEDIUM |
Out-of-bound write vulnerability in libIfaaCa prior to SMR Dec-2023 Release 1 allows local system attackers to execute arbitrary code. | |||||
CVE-2023-42567 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Improper size check vulnerability in softsimd prior to SMR Dec-2023 Release 1 allows stack-based buffer overflow. | |||||
CVE-2023-42561 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 6.8 MEDIUM |
Heap out-of-bounds write vulnerability in bootloader prior to SMR Dec-2023 Release 1 allows a physical attacker to execute arbitrary code. | |||||
CVE-2023-42558 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Out of bounds write vulnerability in HDCP in HAL prior to SMR Dec-2023 Release 1 allows attacker to perform code execution. | |||||
CVE-2023-42566 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Out-of-bound write vulnerability in libsavsvc prior to SMR Dec-2023 Release 1 allows local attackers to execute arbitrary code. | |||||
CVE-2023-42563 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Integer overflow vulnerability in landmarkCopyImageToNative of libFacePreProcessingjni.camera.samsung.so prior to SMR Dec-2023 Release 1 allows attacker to trigger heap overflow. | |||||
CVE-2023-42565 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 6.7 MEDIUM |
Improper input validation vulnerability in Smart Clip prior to SMR Dec-2023 Release 1 allows local attackers with shell privilege to execute arbitrary code. | |||||
CVE-2023-42559 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 5.2 MEDIUM |
Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time. | |||||
CVE-2023-42562 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Integer overflow vulnerability in detectionFindFaceSupportMultiInstance of libFacePreProcessingjni.camera.samsung.so prior to SMR Dec-2023 Release 1 allows attacker to trigger heap overflow. | |||||
CVE-2023-42564 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 5.5 MEDIUM |
Improper access control in knoxcustom service prior to SMR Dec-2023 Release 1 allows attacker to send broadcast with system privilege. | |||||
CVE-2023-42556 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 5.5 MEDIUM |
Improper usage of implicit intent in Contacts prior to SMR Dec-2023 Release 1 allows attacker to get sensitive information. | |||||
CVE-2023-42530 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.5 HIGH |
Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows attackers to enable Wi-Fi and Wi-Fi Direct without User Interaction. | |||||
CVE-2023-30683 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 3.3 LOW |
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call endCall API without permission. | |||||
CVE-2023-30717 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 3.3 LOW |
Sensitive information exposure vulnerability in SVCAgent prior to SMR Sep-2023 Release 1 allows attackers to get unresettable identifiers. | |||||
CVE-2023-30714 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 4.6 MEDIUM |
Improper authorization vulnerability in FolderContainerDragDelegate in One UI Home prior to SMR Sep-2023 Release 1 allows physical attackers to change some settings of the folder lock. |