Total
175 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-30679 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Improper access control in HDCP trustlet prior to SMR Aug-2023 Release 1 allows local attackers to execute arbitrary code. | |||||
CVE-2023-42545 | 1 Samsung | 2 Android, Phone | 2023-12-10 | N/A | 7.5 HIGH |
Use of implicit intent for sensitive communication vulnerability in Phone prior to versions 12.7.20.12 in Android 11, 13.1.48, 13.5.28 in Android 12, and 14.7.38 in Android 13 allows attackers to access location data. | |||||
CVE-2023-30707 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.1 HIGH |
Improper input validation vulnerability in FileProviderStatusReceiver in Samsung Keyboard prior to SMR Sep-2023 Release 1 allows local attackers to delete arbitrary files with Samsung Keyboard privilege. | |||||
CVE-2023-30682 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 3.3 LOW |
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call silenceRinger API without permission. | |||||
CVE-2023-30715 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 3.3 LOW |
Improper access control vulnerability in Weather prior to SMR Sep-2023 Release 1 allows attackers to access location information set in Weather without permission. | |||||
CVE-2023-30692 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Improper input validation vulnerability in Evaluator prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities. | |||||
CVE-2023-30694 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | |||||
CVE-2023-30713 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 5.5 MEDIUM |
Improper privilege management vulnerability in FolderLockNotifier in One UI Home prior to SMR Sep-2023 Release 1 allows local attackers to change some settings of the folder lock. | |||||
CVE-2023-30690 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Improper input validation vulnerability in Duo prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities. | |||||
CVE-2023-42534 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 5.5 MEDIUM |
Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arbitrary files with system privilege. | |||||
CVE-2023-30700 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 3.3 LOW |
PendingIntent hijacking vulnerability in SemWifiApTimeOutImpl in framework prior to SMR Aug-2023 Release 1 allows local attackers to access ContentProvider without proper permission. | |||||
CVE-2023-30698 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 5.5 MEDIUM |
Improper access control vulnerability in TelephonyUI prior to SMR Aug-2023 Release 1 allows local attacker to connect BLE without privilege. | |||||
CVE-2023-30680 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Improper privilege management vulnerability in MMIGroup prior to SMR Aug-2023 Release 1 allows code execution with privilege. | |||||
CVE-2023-30721 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 4.4 MEDIUM |
Insertion of sensitive information into log vulnerability in Locksettings prior to SMR Sep-2023 Release 1 allows a privileged local attacker to get lock screen match information from the log. | |||||
CVE-2023-30709 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 6.7 MEDIUM |
Improper access control in Dual Messenger prior to SMR Sep-2023 Release 1 allows local attackers launch activity with system privilege. | |||||
CVE-2023-30727 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.5 HIGH |
Improper access control vulnerability in SecSettings prior to SMR Oct-2023 Release 1 allows attackers to enable Wi-Fi and connect arbitrary Wi-Fi without User Interaction. | |||||
CVE-2023-30688 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | |||||
CVE-2023-30739 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Arbitrary File Descriptor Write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. | |||||
CVE-2023-42535 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 7.8 HIGH |
Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. | |||||
CVE-2023-30716 | 1 Samsung | 1 Android | 2023-12-10 | N/A | 5.5 MEDIUM |
Improper access control vulnerability in SVCAgent prior to SMR Sep-2023 Release 1 allows attackers to trigger certain commands. |