Total
175 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-30710 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Improper input validation vulnerability in Knox AI prior to SMR Sep-2023 Release 1 allows local attackers to launch privileged activities. | |||||
CVE-2023-42533 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 6.8 MEDIUM |
Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel. | |||||
CVE-2023-30686 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | |||||
CVE-2023-30693 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | |||||
CVE-2023-30732 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 3.3 LOW |
Improper access control in system property prior to SMR Oct-2023 Release 1 allows local attacker to get CPU serial number. | |||||
CVE-2023-30691 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Parcel mismatch in AuthenticationConfig prior to SMR Aug-2023 Release 1 allows local attacker to privilege escalation. | |||||
CVE-2023-30687 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | |||||
CVE-2023-30731 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 4.6 MEDIUM |
Logic error in package installation via debugger command prior to SMR Oct-2023 Release 1 allows physical attacker to install an application that has different build type. | |||||
CVE-2023-30681 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write. | |||||
CVE-2023-30696 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
An improper input validation in IpcTxGetVerifyAkey in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write. | |||||
CVE-2023-42532 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.5 HIGH |
Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote attacker to intercept the network traffic including Firmware information. | |||||
CVE-2023-30684 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 3.3 LOW |
Improper access control in Samsung Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call acceptRingingCall API without permission. | |||||
CVE-2023-30720 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 5.5 MEDIUM |
PendingIntent hijacking in LmsAssemblyTrackerCTC prior to SMR Sep-2023 Release 1 allows local attacker to gain arbitrary file access. | |||||
CVE-2023-42527 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 5.5 MEDIUM |
Improper input validation vulnerability in ProcessWriteFile of libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to expose sensitive information. | |||||
CVE-2023-30719 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 3.3 LOW |
Exposure of Sensitive Information vulnerability in InboundSmsHandler prior to SMR Sep-2023 Release 1 allows local attackers to access certain message data. | |||||
CVE-2023-30708 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.5 HIGH |
Improper authentication in SecSettings prior to SMR Sep-2023 Release 1 allows attacker to access Captive Portal Wi-Fi in Reactivation Lock status. | |||||
CVE-2023-30706 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 4.9 MEDIUM |
Improper authorization in Samsung Keyboard prior to SMR Sep-2023 Release 1 allows attacker to read arbitrary file with system privilege. | |||||
CVE-2023-42552 | 1 Samsung | 2 Android, Firewall | 2023-12-10 | N/A | 3.3 LOW |
Implicit intent hijacking vulnerability in Firewall application prior to versions 12.1.00.24 in Android 11, 13.1.00.16 in Android 12 and 14.1.00.7 in Android 13 allows 3rd party application to tamper the database of Firewall. | |||||
CVE-2023-30654 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 5.5 MEDIUM |
Improper access control vulnerability in SLocationService prior to SMR Aug-2023 Release 1 allows local attacker to update fake location. | |||||
CVE-2023-30699 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 9.8 CRITICAL |
Out-of-bounds write vulnerability in parser_hvcC function of libsimba library prior to SMR Aug-2023 Release 1 allows code execution by remote attackers. |