mobile devices
CVEs (911)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-34641 | 0.00 | — | 0.00 | Sep 4, 2024 | Improper Export of Android Application Components in FeliCaTest prior to SMR Sep-2024 Release 1 allows local attackers to enable NFC configuration. | |||
| CVE-2024-34640 | 0.00 | — | 0.00 | Sep 4, 2024 | Improper access control vulnerability in BGProtectManager prior to SMR Sep-2024 Release 1 allows local attackers to bypass restriction of process expiration. | |||
| CVE-2024-34639 | 0.00 | — | 0.00 | Sep 4, 2024 | Improper handling of exceptional conditions in Setupwizard prior to SMR Aug-2024 Release 1 allows physical attackers to bypass proper validation. | |||
| CVE-2024-34638 | 0.00 | — | 0.00 | Sep 4, 2024 | Improper handling of exceptional conditions in ThemeCenter prior to SMR Sep-2024 Release 1 allows local attackers to delete non-preloaded applications. | |||
| CVE-2024-34637 | 0.00 | — | 0.00 | Sep 4, 2024 | Improper access control in WindowManagerService prior to SMR Sep-2024 Release 1 in Android 12, and SMR Jun-2024 Release 1 in Android 13 and Android 14 allows local attackers to bypass restrictions on starting services from the background. | |||
| CVE-2024-34620 | 0.00 | — | 0.00 | Aug 7, 2024 | Improper privilege management in SumeNNService prior to SMR Aug-2024 Release 1 allows local attackers to start privileged service. | |||
| CVE-2024-34619 | 0.00 | — | 0.01 | Aug 7, 2024 | Improper input validation in librtp.so prior to SMR Aug-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability. | |||
| CVE-2024-34618 | 0.00 | — | 0.00 | Aug 7, 2024 | Improper access control in System property prior to SMR Aug-2024 Release 1 allows local attackers to access cell related information. | |||
| CVE-2024-34617 | 0.00 | — | 0.00 | Aug 7, 2024 | Improper handling of insufficient permission in Telephony prior to SMR Aug-2024 Release 1 allows local attackers to configure default Message application. | |||
| CVE-2024-34616 | 0.00 | — | 0.00 | Aug 7, 2024 | Improper handling of insufficient permission in KnoxDualDARPolicy prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive data. | |||
| CVE-2024-34615 | 0.00 | — | 0.00 | Aug 7, 2024 | Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to cause memory corruption. | |||
| CVE-2024-34614 | 0.00 | — | 0.00 | Aug 7, 2024 | Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code. | |||
| CVE-2024-34613 | 0.00 | — | 0.00 | Aug 7, 2024 | Improper access control in Galaxy Watch prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive information of Galaxy watch. | |||
| CVE-2024-34612 | 0.00 | — | 0.00 | Aug 7, 2024 | Out-of-bound write in libcodec2secmp4vdec.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code. | |||
| CVE-2024-34611 | 0.00 | — | 0.00 | Aug 7, 2024 | Improper access control in KnoxService prior to SMR Aug-2024 Release 1 allows local attackers to get sensitive information. | |||
| CVE-2024-34610 | 0.00 | — | 0.00 | Aug 7, 2024 | Improper access control in ExtControlDeviceService prior to SMR Aug-2024 Release 1 allows local attackers to access protected data. | |||
| CVE-2024-34609 | 0.00 | — | 0.00 | Aug 7, 2024 | Improper access control in VoiceNoteService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background. | |||
| CVE-2024-34608 | 0.00 | — | 0.00 | Aug 7, 2024 | Improper access control in PaymentManagerService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background. | |||
| CVE-2024-34607 | 0.00 | — | 0.00 | Aug 7, 2024 | Improper access control in SamsungNotesService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background. | |||
| CVE-2024-34606 | 0.00 | — | 0.00 | Aug 7, 2024 | Improper access control in SmartThingsService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background. |
- CVE-2024-34641Sep 4, 2024risk 0.00cvss —epss 0.00
Improper Export of Android Application Components in FeliCaTest prior to SMR Sep-2024 Release 1 allows local attackers to enable NFC configuration.
- CVE-2024-34640Sep 4, 2024risk 0.00cvss —epss 0.00
Improper access control vulnerability in BGProtectManager prior to SMR Sep-2024 Release 1 allows local attackers to bypass restriction of process expiration.
- CVE-2024-34639Sep 4, 2024risk 0.00cvss —epss 0.00
Improper handling of exceptional conditions in Setupwizard prior to SMR Aug-2024 Release 1 allows physical attackers to bypass proper validation.
- CVE-2024-34638Sep 4, 2024risk 0.00cvss —epss 0.00
Improper handling of exceptional conditions in ThemeCenter prior to SMR Sep-2024 Release 1 allows local attackers to delete non-preloaded applications.
- CVE-2024-34637Sep 4, 2024risk 0.00cvss —epss 0.00
Improper access control in WindowManagerService prior to SMR Sep-2024 Release 1 in Android 12, and SMR Jun-2024 Release 1 in Android 13 and Android 14 allows local attackers to bypass restrictions on starting services from the background.
- CVE-2024-34620Aug 7, 2024risk 0.00cvss —epss 0.00
Improper privilege management in SumeNNService prior to SMR Aug-2024 Release 1 allows local attackers to start privileged service.
- CVE-2024-34619Aug 7, 2024risk 0.00cvss —epss 0.01
Improper input validation in librtp.so prior to SMR Aug-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.
- CVE-2024-34618Aug 7, 2024risk 0.00cvss —epss 0.00
Improper access control in System property prior to SMR Aug-2024 Release 1 allows local attackers to access cell related information.
- CVE-2024-34617Aug 7, 2024risk 0.00cvss —epss 0.00
Improper handling of insufficient permission in Telephony prior to SMR Aug-2024 Release 1 allows local attackers to configure default Message application.
- CVE-2024-34616Aug 7, 2024risk 0.00cvss —epss 0.00
Improper handling of insufficient permission in KnoxDualDARPolicy prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive data.
- CVE-2024-34615Aug 7, 2024risk 0.00cvss —epss 0.00
Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to cause memory corruption.
- CVE-2024-34614Aug 7, 2024risk 0.00cvss —epss 0.00
Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code.
- CVE-2024-34613Aug 7, 2024risk 0.00cvss —epss 0.00
Improper access control in Galaxy Watch prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive information of Galaxy watch.
- CVE-2024-34612Aug 7, 2024risk 0.00cvss —epss 0.00
Out-of-bound write in libcodec2secmp4vdec.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code.
- CVE-2024-34611Aug 7, 2024risk 0.00cvss —epss 0.00
Improper access control in KnoxService prior to SMR Aug-2024 Release 1 allows local attackers to get sensitive information.
- CVE-2024-34610Aug 7, 2024risk 0.00cvss —epss 0.00
Improper access control in ExtControlDeviceService prior to SMR Aug-2024 Release 1 allows local attackers to access protected data.
- CVE-2024-34609Aug 7, 2024risk 0.00cvss —epss 0.00
Improper access control in VoiceNoteService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.
- CVE-2024-34608Aug 7, 2024risk 0.00cvss —epss 0.00
Improper access control in PaymentManagerService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.
- CVE-2024-34607Aug 7, 2024risk 0.00cvss —epss 0.00
Improper access control in SamsungNotesService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.
- CVE-2024-34606Aug 7, 2024risk 0.00cvss —epss 0.00
Improper access control in SmartThingsService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.
Page 42 of 46