VYPR

mobile devices

by Samsung Mobile

CVEs (911)

  • CVE-2023-30712MedSep 6, 2023
    risk 0.44cvss 6.8epss 0.00

    Improper input validation in Settings Suggestions prior to SMR Sep-2023 Release 1 allows attackers to launch arbitrary activity.

  • CVE-2023-30694MedAug 10, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

  • CVE-2023-30693MedAug 10, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

  • CVE-2023-30689MedAug 10, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

  • CVE-2023-30688MedAug 10, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

  • CVE-2023-30687MedAug 10, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

  • CVE-2023-30686MedAug 10, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.

  • CVE-2023-30654MedAug 10, 2023
    risk 0.44cvss 6.7epss 0.00

    Improper access control vulnerability in SLocationService prior to SMR Aug-2023 Release 1 allows local attacker to update fake location.

  • CVE-2023-30670MedJul 6, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write in BuildIpcFactoryDeviceTestEvent of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.

  • CVE-2023-30669MedJul 6, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write in DoOemFactorySendFactoryTestResult of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.

  • CVE-2023-30668MedJul 6, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write in BuildOemSecureSimLockResponse of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.

  • CVE-2023-30653MedJul 6, 2023
    risk 0.44cvss 6.7epss 0.00

    Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.

  • CVE-2023-30652MedJul 6, 2023
    risk 0.44cvss 6.7epss 0.00

    Out of bounds read and write in callrunTspCmdNoRead of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.

  • CVE-2023-30651MedJul 6, 2023
    risk 0.44cvss 6.7epss 0.00

    Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.

  • CVE-2023-30650MedJul 6, 2023
    risk 0.44cvss 6.7epss 0.00

    Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code.

  • CVE-2023-21493MedMay 4, 2023
    risk 0.44cvss 6.8epss 0.00

    Improper access control vulnerability in SemShareFileProvider prior to SMR May-2023 Release 1 allows local attackers to access protected data.

  • CVE-2023-21451MedFeb 9, 2023
    risk 0.44cvss 6.7epss 0.00

    A Stack-based overflow vulnerability in IpcRxEmbmsSessionList in SECRIL prior to Android S(12) allows attacker to cause memory corruptions.

  • CVE-2022-39913MedDec 8, 2022
    risk 0.44cvss 6.8epss 0.00

    Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information.

  • CVE-2022-33730MedAug 5, 2022
    risk 0.44cvss 6.8epss 0.00

    Heap-based buffer overflow vulnerability in Samsung Dex for PC prior to SMR Aug-2022 Release 1 allows arbitrary code execution by physical attackers.

  • CVE-2021-25397MedJun 11, 2021
    risk 0.44cvss 6.8epss 0.00

    An improper access control vulnerability in TelephonyUI prior to SMR MAY-2021 Release 1 allows local attackers to write arbitrary files of telephony process via untrusted applications.

Page 12 of 46