VYPR

mobile devices

by Samsung Mobile

CVEs (911)

  • CVE-2020-10855MedMar 24, 2020
    risk 0.30cvss 4.6epss 0.00

    An issue was discovered on Samsung mobile devices with P(9.0) software. Attackers can bypass Factory Reset Protection (FRP) via AppTray. The Samsung ID is SVE-2019-16192 (January 2020).

  • CVE-2024-20820MedFeb 6, 2024
    risk 0.29cvss 4.4epss 0.00

    Improper input validation in bootloader prior to SMR Feb-2024 Release 1 allows local privileged attackers to cause an Out-Of-Bounds read.

  • CVE-2023-30721MedSep 6, 2023
    risk 0.29cvss 4.4epss 0.00

    Insertion of sensitive information into log vulnerability in Locksettings prior to SMR Sep-2023 Release 1 allows a privileged local attacker to get lock screen match information from the log.

  • CVE-2023-30697MedAug 10, 2023
    risk 0.29cvss 4.4epss 0.00

    An improper input validation in IpcTxCfgSetSimlockPayload in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.

  • CVE-2023-30696MedAug 10, 2023
    risk 0.29cvss 4.4epss 0.00

    An improper input validation in IpcTxGetVerifyAkey in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.

  • CVE-2023-30681MedAug 10, 2023
    risk 0.29cvss 4.4epss 0.00

    An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.

  • CVE-2023-30665MedJul 6, 2023
    risk 0.29cvss 4.4epss 0.00

    Improper input validation vulnerability in OnOemServiceMode in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds read.

  • CVE-2023-21497MedMay 4, 2023
    risk 0.29cvss 4.4epss 0.00

    Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to access the memory address.

  • CVE-2023-21488MedMay 4, 2023
    risk 0.29cvss 4.4epss 0.00

    Improper access control vulnerablility in Tips prior to SMR May-2023 Release 1 allows local attackers to launch arbitrary activity in Tips.

  • CVE-2023-21460MedMar 16, 2023
    risk 0.29cvss 4.4epss 0.00

    Improper authentication in SecSettings prior to SMR Mar-2023 Release 1 allows attacker to reset the setting.

  • CVE-2023-21435MedFeb 9, 2023
    risk 0.29cvss 4.4epss 0.00

    Exposure of Sensitive Information vulnerability in Fingerprint TA prior to SMR Feb-2023 Release 1 allows attackers to access the memory address information via log.

  • CVE-2023-21430MedFeb 9, 2023
    risk 0.29cvss 4.4epss 0.00

    An out-of-bound read vulnerability in mapToBuffer function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR JAN-2023 Release 1 allows attacker to cause memory access fault.

  • CVE-2022-39897MedDec 8, 2022
    risk 0.29cvss 4.4epss 0.00

    Exposure of Sensitive Information vulnerability in kernel prior to SMR Dec-2022 Release 1 allows attackers to access the kernel address information via log.

  • CVE-2022-39853MedOct 7, 2022
    risk 0.29cvss 4.4epss 0.00

    A use after free vulnerability in perf-mgr driver prior to SMR Oct-2022 Release 1 allows attacker to cause memory access fault.

  • CVE-2022-36863MedSep 9, 2022
    risk 0.29cvss 4.4epss 0.00

    A heap-based overflow vulnerability in GetCorrectDbLanguageTypeEsPKc function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.

  • CVE-2022-36862MedSep 9, 2022
    risk 0.29cvss 4.4epss 0.00

    A heap-based overflow vulnerability in HWR::EngineCJK::Impl::Construct() in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.

  • CVE-2022-36860MedSep 9, 2022
    risk 0.29cvss 4.4epss 0.00

    A heap-based overflow vulnerability in LoadEnvironment function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.

  • CVE-2022-36858MedSep 9, 2022
    risk 0.29cvss 4.4epss 0.00

    A heap-based overflow vulnerability in GetCorrectDbLanguageTypeEsPKc() function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.

  • CVE-2022-36855MedSep 9, 2022
    risk 0.29cvss 4.4epss 0.00

    A use after free vulnerability in iva_ctl driver prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.

  • CVE-2022-36846MedSep 9, 2022
    risk 0.29cvss 4.4epss 0.00

    A heap-based overflow vulnerability in ConstructDictionary function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.

Page 22 of 46