mobile devices
CVEs (911)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-30712 | Med | 0.44 | 6.8 | 0.00 | Sep 6, 2023 | Improper input validation in Settings Suggestions prior to SMR Sep-2023 Release 1 allows attackers to launch arbitrary activity. | ||
| CVE-2023-30694 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30693 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30689 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30688 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30687 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30686 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30654 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Improper access control vulnerability in SLocationService prior to SMR Aug-2023 Release 1 allows local attacker to update fake location. | ||
| CVE-2023-30670 | Med | 0.44 | 6.7 | 0.00 | Jul 6, 2023 | Out-of-bounds Write in BuildIpcFactoryDeviceTestEvent of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30669 | Med | 0.44 | 6.7 | 0.00 | Jul 6, 2023 | Out-of-bounds Write in DoOemFactorySendFactoryTestResult of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30668 | Med | 0.44 | 6.7 | 0.00 | Jul 6, 2023 | Out-of-bounds Write in BuildOemSecureSimLockResponse of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30653 | Med | 0.44 | 6.7 | 0.00 | Jul 6, 2023 | Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code. | ||
| CVE-2023-30652 | Med | 0.44 | 6.7 | 0.00 | Jul 6, 2023 | Out of bounds read and write in callrunTspCmdNoRead of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code. | ||
| CVE-2023-30651 | Med | 0.44 | 6.7 | 0.00 | Jul 6, 2023 | Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code. | ||
| CVE-2023-30650 | Med | 0.44 | 6.7 | 0.00 | Jul 6, 2023 | Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code. | ||
| CVE-2023-21493 | Med | 0.44 | 6.8 | 0.00 | May 4, 2023 | Improper access control vulnerability in SemShareFileProvider prior to SMR May-2023 Release 1 allows local attackers to access protected data. | ||
| CVE-2023-21451 | Med | 0.44 | 6.7 | 0.00 | Feb 9, 2023 | A Stack-based overflow vulnerability in IpcRxEmbmsSessionList in SECRIL prior to Android S(12) allows attacker to cause memory corruptions. | ||
| CVE-2022-39913 | Med | 0.44 | 6.8 | 0.00 | Dec 8, 2022 | Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information. | ||
| CVE-2022-33730 | Med | 0.44 | 6.8 | 0.00 | Aug 5, 2022 | Heap-based buffer overflow vulnerability in Samsung Dex for PC prior to SMR Aug-2022 Release 1 allows arbitrary code execution by physical attackers. | ||
| CVE-2021-25397 | Med | 0.44 | 6.8 | 0.00 | Jun 11, 2021 | An improper access control vulnerability in TelephonyUI prior to SMR MAY-2021 Release 1 allows local attackers to write arbitrary files of telephony process via untrusted applications. |
- risk 0.44cvss 6.8epss 0.00
Improper input validation in Settings Suggestions prior to SMR Sep-2023 Release 1 allows attackers to launch arbitrary activity.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Improper access control vulnerability in SLocationService prior to SMR Aug-2023 Release 1 allows local attacker to update fake location.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in BuildIpcFactoryDeviceTestEvent of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in DoOemFactorySendFactoryTestResult of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in BuildOemSecureSimLockResponse of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out of bounds read and write in callrunTspCmdNoRead of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.
- risk 0.44cvss 6.8epss 0.00
Improper access control vulnerability in SemShareFileProvider prior to SMR May-2023 Release 1 allows local attackers to access protected data.
- risk 0.44cvss 6.7epss 0.00
A Stack-based overflow vulnerability in IpcRxEmbmsSessionList in SECRIL prior to Android S(12) allows attacker to cause memory corruptions.
- risk 0.44cvss 6.8epss 0.00
Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information.
- risk 0.44cvss 6.8epss 0.00
Heap-based buffer overflow vulnerability in Samsung Dex for PC prior to SMR Aug-2022 Release 1 allows arbitrary code execution by physical attackers.
- risk 0.44cvss 6.8epss 0.00
An improper access control vulnerability in TelephonyUI prior to SMR MAY-2021 Release 1 allows local attackers to write arbitrary files of telephony process via untrusted applications.
Page 12 of 46