VYPR

mobile devices

by Samsung Mobile

CVEs (911)

  • CVE-2024-34641Sep 4, 2024
    risk 0.00cvss epss 0.00

    Improper Export of Android Application Components in FeliCaTest prior to SMR Sep-2024 Release 1 allows local attackers to enable NFC configuration.

  • CVE-2024-34640Sep 4, 2024
    risk 0.00cvss epss 0.00

    Improper access control vulnerability in BGProtectManager prior to SMR Sep-2024 Release 1 allows local attackers to bypass restriction of process expiration.

  • CVE-2024-34639Sep 4, 2024
    risk 0.00cvss epss 0.00

    Improper handling of exceptional conditions in Setupwizard prior to SMR Aug-2024 Release 1 allows physical attackers to bypass proper validation.

  • CVE-2024-34638Sep 4, 2024
    risk 0.00cvss epss 0.00

    Improper handling of exceptional conditions in ThemeCenter prior to SMR Sep-2024 Release 1 allows local attackers to delete non-preloaded applications.

  • CVE-2024-34637Sep 4, 2024
    risk 0.00cvss epss 0.00

    Improper access control in WindowManagerService prior to SMR Sep-2024 Release 1 in Android 12, and SMR Jun-2024 Release 1 in Android 13 and Android 14 allows local attackers to bypass restrictions on starting services from the background.

  • CVE-2024-34620Aug 7, 2024
    risk 0.00cvss epss 0.00

    Improper privilege management in SumeNNService prior to SMR Aug-2024 Release 1 allows local attackers to start privileged service.

  • CVE-2024-34619Aug 7, 2024
    risk 0.00cvss epss 0.01

    Improper input validation in librtp.so prior to SMR Aug-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.

  • CVE-2024-34618Aug 7, 2024
    risk 0.00cvss epss 0.00

    Improper access control in System property prior to SMR Aug-2024 Release 1 allows local attackers to access cell related information.

  • CVE-2024-34617Aug 7, 2024
    risk 0.00cvss epss 0.00

    Improper handling of insufficient permission in Telephony prior to SMR Aug-2024 Release 1 allows local attackers to configure default Message application.

  • CVE-2024-34616Aug 7, 2024
    risk 0.00cvss epss 0.00

    Improper handling of insufficient permission in KnoxDualDARPolicy prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive data.

  • CVE-2024-34615Aug 7, 2024
    risk 0.00cvss epss 0.00

    Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to cause memory corruption.

  • CVE-2024-34614Aug 7, 2024
    risk 0.00cvss epss 0.00

    Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code.

  • CVE-2024-34613Aug 7, 2024
    risk 0.00cvss epss 0.00

    Improper access control in Galaxy Watch prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive information of Galaxy watch.

  • CVE-2024-34612Aug 7, 2024
    risk 0.00cvss epss 0.00

    Out-of-bound write in libcodec2secmp4vdec.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code.

  • CVE-2024-34611Aug 7, 2024
    risk 0.00cvss epss 0.00

    Improper access control in KnoxService prior to SMR Aug-2024 Release 1 allows local attackers to get sensitive information.

  • CVE-2024-34610Aug 7, 2024
    risk 0.00cvss epss 0.00

    Improper access control in ExtControlDeviceService prior to SMR Aug-2024 Release 1 allows local attackers to access protected data.

  • CVE-2024-34609Aug 7, 2024
    risk 0.00cvss epss 0.00

    Improper access control in VoiceNoteService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.

  • CVE-2024-34608Aug 7, 2024
    risk 0.00cvss epss 0.00

    Improper access control in PaymentManagerService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.

  • CVE-2024-34607Aug 7, 2024
    risk 0.00cvss epss 0.00

    Improper access control in SamsungNotesService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.

  • CVE-2024-34606Aug 7, 2024
    risk 0.00cvss epss 0.00

    Improper access control in SmartThingsService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.

Page 42 of 46