Total
225 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-21513 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 6.8 MEDIUM |
| Improper privilege management vulnerability in CC Mode prior to SMR Jun-2023 Release 1 allows physical attackers to manipulate device to operate in way that results in unexpected behavior in CC Mode under specific condition. | |||||
| CVE-2023-30644 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Stack out of bound write vulnerability in CdmaSmsParser of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code. | |||||
| CVE-2023-30656 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Improper input validation vulnerability in LSOItemData prior to SMR Jul-2023 Release 1 allows attackers to launch certain activities. | |||||
| CVE-2023-21493 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 5.5 MEDIUM |
| Improper access control vulnerability in SemShareFileProvider prior to SMR May-2023 Release 1 allows local attackers to access protected data. | |||||
| CVE-2023-21502 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands. | |||||
| CVE-2023-21512 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 3.3 LOW |
| Improper Knox ID validation logic in notification framework prior to SMR Jun-2023 Release 1 allows local attackers to read work profile notifications without proper access permission. | |||||
| CVE-2023-30655 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Improper input validation vulnerability in SCEPProfile prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities. | |||||
| CVE-2023-30646 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Heap out of bound write vulnerability in BroadcastSmsConfig of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code. | |||||
| CVE-2023-30652 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Out of bounds read and write in callrunTspCmdNoRead of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code. | |||||
| CVE-2023-30671 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 5.5 MEDIUM |
| Logic error in package installation via adb command prior to SMR Jul-2023 Release 1 allows local attackers to downgrade installed application. | |||||
| CVE-2023-21499 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Out-of-bounds write vulnerability in TA_Communication_mpos_encrypt_pin in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code. | |||||
| CVE-2023-21491 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Improper access control vulnerability in ThemeManager prior to SMR May-2023 Release 1 allows local attackers to write arbitrary files with system privilege. | |||||
| CVE-2023-30669 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Out-of-bounds Write in DoOemFactorySendFactoryTestResult of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code. | |||||
| CVE-2023-30659 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Improper input validation vulnerability in Transaction prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities. | |||||
| CVE-2023-30640 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 3.3 LOW |
| Improper access control vulnerability in PersonaManagerService prior to SMR Jul-2023 Release 1 allows local attackers to change confiugration. | |||||
| CVE-2023-21500 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 5.5 MEDIUM |
| Double free validation vulnerability in setPinPadImages in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to access the trustlet memory. | |||||
| CVE-2023-30664 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Improper input validation vulnerability in RegisteredMSISDN prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged activities. | |||||
| CVE-2023-21492 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 4.4 MEDIUM |
| Kernel pointers are printed in the log file prior to SMR May-2023 Release 1 allows a privileged local attacker to bypass ASLR. | |||||
| CVE-2023-30645 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Heap out of bound write vulnerability in IpcRxIncomingCBMsg of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code. | |||||
| CVE-2023-21501 | 1 Samsung | 1 Android | 2024-02-28 | N/A | 7.8 HIGH |
| Improper input validation vulnerability in mPOS fiserve trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code. | |||||