VYPR

NFC

by Samsung Mobile

CVEs (5)

  • CVE-2023-21357Oct 30, 2023
    risk 0.00cvss epss 0.00

    In NFC, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2023-35671Sep 11, 2023
    risk 0.00cvss epss 0.00

    In onHostEmulationData of HostEmulationManager.java, there is a possible way for a general purpose NFC reader to read the full card number and expiry details when the device is in locked screen mode due to a logic error in the code. This could lead to local information…

  • CVE-2023-21241Jul 12, 2023
    risk 0.00cvss epss 0.00

    In rw_i93_send_to_upper of rw_i93.cc, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2023-21426Feb 9, 2023
    risk 0.00cvss epss 0.00

    Hardcoded AES key to encrypt cardemulation PINs in NFC prior to SMR Jan-2023 Release 1 allows attackers to access cardemulation PIN.

  • CVE-2019-9251Sep 27, 2019
    risk 0.00cvss epss 0.00

    In NFC, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120274615