mobile devices
CVEs (911)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-20988 | 0.00 | — | 0.00 | Mar 16, 2026 | Improper verification of intent by broadcast receiver in Settings prior to SMR Mar-2026 Release 1 allows local attacker to launch arbitrary activity with Settings privilege. User interaction is required for triggering this vulnerability. | |||
| CVE-2026-20983 | 0.00 | — | 0.00 | Feb 4, 2026 | Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Samsung Dialer privilege. | |||
| CVE-2026-20982 | 0.00 | — | 0.00 | Feb 4, 2026 | Path traversal in ShortcutService prior to SMR Feb-2026 Release 1 allows privileged local attacker to create file with system privilege. | |||
| CVE-2026-20981 | 0.00 | — | 0.00 | Feb 4, 2026 | Improper input validation in FacAtFunction prior to SMR Feb-2026 Release 1 allows privileged physical attacker to execute arbitrary command with system privilege. | |||
| CVE-2026-20980 | 0.00 | — | 0.00 | Feb 4, 2026 | Improper input validation in PACM prior to SMR Feb-2026 Release 1 allows physical attacker to execute arbitrary commands. | |||
| CVE-2026-20979 | 0.00 | — | 0.00 | Feb 4, 2026 | Improper privilege management in Settings prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Settings privilege. | |||
| CVE-2026-20978 | 0.00 | — | 0.00 | Feb 4, 2026 | Improper authorization in KnoxGuardManager prior to SMR Feb-2026 Release 1 allows local attackers to bypass the persistence configuration of the application. | |||
| CVE-2026-20977 | 0.00 | — | 0.00 | Feb 4, 2026 | Improper access control in Emergency Sharing prior to SMR Feb-2026 Release 1 allows local attackers to interrupt its functioning. | |||
| CVE-2026-20974 | 0.00 | — | 0.00 | Jan 9, 2026 | Improper input validation in data related to network restrictions prior to SMR Jan-2026 Release 1 allows physical attackers to bypass Carrier Relock. | |||
| CVE-2026-20973 | 0.00 | — | 0.00 | Jan 9, 2026 | Out-of-bounds read in libimagecodec.quram.so prior to SMR Jan-2026 Release 1 allows remote attacker to access out-of-bounds memory. | |||
| CVE-2026-20972 | 0.00 | — | 0.00 | Jan 9, 2026 | Improper Export of Android Application Components in UwbTest prior to SMR Jan-2026 Release 1 allows local attackers to enable UWB. | |||
| CVE-2026-20971 | 0.00 | — | 0.00 | Jan 9, 2026 | Use After Free in PROCA driver prior to SMR Jan-2026 Release 1 allows local attackers to potentially execute arbitrary code. | |||
| CVE-2026-20970 | 0.00 | — | 0.00 | Jan 9, 2026 | Improper access control in SLocation prior to SMR Jan-2026 Release 1 allows local attackers to execute the privileged APIs. | |||
| CVE-2026-20969 | 0.00 | — | 0.00 | Jan 9, 2026 | Improper input validation in SecSettings prior to SMR Jan-2026 Release 1 allows local attacker to access file with system privilege. User interaction is required for triggering this vulnerability. | |||
| CVE-2026-20968 | 0.00 | — | 0.00 | Jan 9, 2026 | Use after free in DualDAR prior to SMR Jan-2026 Release 1 allows local privileged attackers to execute arbitrary code. | |||
| CVE-2025-58480 | 0.00 | — | 0.00 | Dec 2, 2025 | Heap-based buffer overflow in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory. | |||
| CVE-2025-58479 | 0.00 | — | 0.00 | Dec 2, 2025 | Out-of-bounds read in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory. | |||
| CVE-2025-58478 | 0.00 | — | 0.00 | Dec 2, 2025 | Out-of-bounds write in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory. | |||
| CVE-2025-58477 | 0.00 | — | 0.00 | Dec 2, 2025 | Out-of-bounds write in parsing IFD tag in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory. | |||
| CVE-2025-58476 | 0.00 | — | 0.00 | Dec 2, 2025 | Out-of-bounds read vulnerability in bootloader prior to SMR Dec-2025 Release 1 allows physical attackers to access out-of-bounds memory. |
- CVE-2026-20988Mar 16, 2026risk 0.00cvss —epss 0.00
Improper verification of intent by broadcast receiver in Settings prior to SMR Mar-2026 Release 1 allows local attacker to launch arbitrary activity with Settings privilege. User interaction is required for triggering this vulnerability.
- CVE-2026-20983Feb 4, 2026risk 0.00cvss —epss 0.00
Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Samsung Dialer privilege.
- CVE-2026-20982Feb 4, 2026risk 0.00cvss —epss 0.00
Path traversal in ShortcutService prior to SMR Feb-2026 Release 1 allows privileged local attacker to create file with system privilege.
- CVE-2026-20981Feb 4, 2026risk 0.00cvss —epss 0.00
Improper input validation in FacAtFunction prior to SMR Feb-2026 Release 1 allows privileged physical attacker to execute arbitrary command with system privilege.
- CVE-2026-20980Feb 4, 2026risk 0.00cvss —epss 0.00
Improper input validation in PACM prior to SMR Feb-2026 Release 1 allows physical attacker to execute arbitrary commands.
- CVE-2026-20979Feb 4, 2026risk 0.00cvss —epss 0.00
Improper privilege management in Settings prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Settings privilege.
- CVE-2026-20978Feb 4, 2026risk 0.00cvss —epss 0.00
Improper authorization in KnoxGuardManager prior to SMR Feb-2026 Release 1 allows local attackers to bypass the persistence configuration of the application.
- CVE-2026-20977Feb 4, 2026risk 0.00cvss —epss 0.00
Improper access control in Emergency Sharing prior to SMR Feb-2026 Release 1 allows local attackers to interrupt its functioning.
- CVE-2026-20974Jan 9, 2026risk 0.00cvss —epss 0.00
Improper input validation in data related to network restrictions prior to SMR Jan-2026 Release 1 allows physical attackers to bypass Carrier Relock.
- CVE-2026-20973Jan 9, 2026risk 0.00cvss —epss 0.00
Out-of-bounds read in libimagecodec.quram.so prior to SMR Jan-2026 Release 1 allows remote attacker to access out-of-bounds memory.
- CVE-2026-20972Jan 9, 2026risk 0.00cvss —epss 0.00
Improper Export of Android Application Components in UwbTest prior to SMR Jan-2026 Release 1 allows local attackers to enable UWB.
- CVE-2026-20971Jan 9, 2026risk 0.00cvss —epss 0.00
Use After Free in PROCA driver prior to SMR Jan-2026 Release 1 allows local attackers to potentially execute arbitrary code.
- CVE-2026-20970Jan 9, 2026risk 0.00cvss —epss 0.00
Improper access control in SLocation prior to SMR Jan-2026 Release 1 allows local attackers to execute the privileged APIs.
- CVE-2026-20969Jan 9, 2026risk 0.00cvss —epss 0.00
Improper input validation in SecSettings prior to SMR Jan-2026 Release 1 allows local attacker to access file with system privilege. User interaction is required for triggering this vulnerability.
- CVE-2026-20968Jan 9, 2026risk 0.00cvss —epss 0.00
Use after free in DualDAR prior to SMR Jan-2026 Release 1 allows local privileged attackers to execute arbitrary code.
- CVE-2025-58480Dec 2, 2025risk 0.00cvss —epss 0.00
Heap-based buffer overflow in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.
- CVE-2025-58479Dec 2, 2025risk 0.00cvss —epss 0.00
Out-of-bounds read in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.
- CVE-2025-58478Dec 2, 2025risk 0.00cvss —epss 0.00
Out-of-bounds write in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.
- CVE-2025-58477Dec 2, 2025risk 0.00cvss —epss 0.00
Out-of-bounds write in parsing IFD tag in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.
- CVE-2025-58476Dec 2, 2025risk 0.00cvss —epss 0.00
Out-of-bounds read vulnerability in bootloader prior to SMR Dec-2025 Release 1 allows physical attackers to access out-of-bounds memory.
Page 2 of 46