VYPR

mobile devices

by Samsung Mobile

CVEs (911)

  • CVE-2021-25359MedApr 9, 2021
    risk 0.26cvss 4.0epss 0.00

    An improper SELinux policy prior to SMR APR-2021 Release 1 allows local attackers to access AP information without proper permissions via untrusted applications.

  • CVE-2021-25358MedApr 9, 2021
    risk 0.26cvss 4.0epss 0.00

    A vulnerability that stores IMSI values in an improper path prior to SMR APR-2021 Release 1 allows local attackers to access IMSI values without any permission via untrusted applications.

  • CVE-2021-25345MedMar 4, 2021
    risk 0.26cvss 4.0epss 0.00

    Graphic format mismatch while converting video format in hwcomposer prior to SMR Mar-2021 Release 1 results in kernel panic due to unsupported format.

  • CVE-2022-24001LowFeb 11, 2022
    risk 0.25cvss 3.8epss 0.00

    Information disclosure vulnerability in Edge Panel prior to Android S(12) allows physical attackers to access screenshot in clipboard via Edge Panel.

  • CVE-2022-24000LowFeb 11, 2022
    risk 0.25cvss 3.9epss 0.00

    PendingIntent hijacking vulnerability in DataUsageReminderReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent.

  • CVE-2022-23999LowFeb 11, 2022
    risk 0.25cvss 3.9epss 0.00

    PendingIntent hijacking vulnerability in CpaReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent.

  • CVE-2022-23427LowFeb 11, 2022
    risk 0.25cvss 3.9epss 0.00

    PendingIntent hijacking vulnerability in KnoxPrivacyNoticeReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission via implicit Intent.

  • CVE-2021-25475LowOct 6, 2021
    risk 0.25cvss 3.9epss 0.00

    A possible heap-based buffer overflow vulnerability in DSP kernel driver prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution.

  • CVE-2021-25471LowOct 6, 2021
    risk 0.24cvss 3.7epss 0.00

    A lack of replay attack protection in Security Mode Command process prior to SMR Oct-2021 Release 1 can lead to denial of service on mobile network connection and battery depletion.

  • CVE-2020-13837LowJun 4, 2020
    risk 0.23cvss 3.5epss 0.00

    An issue was discovered on Samsung mobile devices with Q(10.0) software. The Lockscreen feature does not block Quick Panel access to Music Share. The Samsung ID is SVE-2020-17145 (June 2020).

  • CVE-2024-20810LowFeb 6, 2024
    risk 0.21cvss 3.3epss 0.00

    Implicit intent hijacking vulnerability in Smart Suggestions prior to SMR Feb-2024 Release 1 allows local attackers to get sensitive information.

  • CVE-2024-20805LowJan 4, 2024
    risk 0.21cvss 3.3epss 0.00

    Path traversal vulnerability in ZipCompressor of MyFiles prior to SMR Jan-2024 Release 1 in Android 11 and Android 12, and version 14.5.00.21 in Android 13 allows local attackers to write arbitrary file.

  • CVE-2023-42556LowDec 5, 2023
    risk 0.21cvss 3.3epss 0.00

    Improper usage of implicit intent in Contacts prior to SMR Dec-2023 Release 1 allows attacker to get sensitive information.

  • CVE-2023-30648LowJul 6, 2023
    risk 0.21cvss 3.3epss 0.00

    Stack out-of-bounds write vulnerability in IpcRxImeiUpdateImeiNoti of RILD priro to SMR Jul-2023 Release 1 cause a denial of service on the system.

  • CVE-2023-21452LowMar 16, 2023
    risk 0.21cvss 3.3epss 0.00

    Improper usage of implicit intent in Bluetooth prior to SMR Mar-2023 Release 1 allows attacker to get MAC address of connected device.

  • CVE-2023-21436LowFeb 9, 2023
    risk 0.21cvss 3.3epss 0.00

    Improper usage of implicit intent in Contacts prior to SMR Feb-2023 Release 1 allows attacker to get account ID.

  • CVE-2022-39904LowDec 8, 2022
    risk 0.21cvss 3.3epss 0.00

    Exposure of Sensitive Information vulnerability in Samsung Settings prior to SMR Dec-2022 Release 1 allows local attackers to access the Network Access Identifier via log.

  • CVE-2022-39850LowOct 7, 2022
    risk 0.21cvss 3.3epss 0.00

    Improper access control in mum_container_policy service prior to SMR Oct-2022 Release 1 allows allows unauthorized read of configuration data.

  • CVE-2022-39849LowOct 7, 2022
    risk 0.21cvss 3.3epss 0.00

    Improper access control in knox_vpn_policy service prior to SMR Oct-2022 Release 1 allows allows unauthorized read of configuration data.

  • CVE-2022-36853LowSep 9, 2022
    risk 0.21cvss 3.3epss 0.00

    Intent redirection in Photo Editor prior to SMR Sep-2022 Release 1 allows attacker to get sensitive information.

Page 29 of 46