Samsung Blockchain Keystore
CVEs (14)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-21021 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds write in drawing pinpad in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory. | |||
| CVE-2025-21020 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds write in creating bitmap images in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory. | |||
| CVE-2025-21018 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds read in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to read out-of-bounds memory. | |||
| CVE-2025-21017 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds write in detaching crypto box in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory. | |||
| CVE-2025-20901 | 0.00 | — | 0.00 | Feb 4, 2025 | Out-of-bounds read in Blockchain Keystore prior to version 1.3.16.5 allows local privileged attackers to read out-of-bounds memory. | |||
| CVE-2025-20900 | 0.00 | — | 0.00 | Feb 4, 2025 | Out-of-bounds write in Blockchain Keystore prior to version 1.3.16.5 allows local privileged attackers to write out-of-bounds memory. | |||
| CVE-2024-49406 | 0.00 | — | 0.00 | Nov 6, 2024 | Improper validation of integrity check value in Blockchain Keystore prior to version 1.3.16 allows local attackers to modify transaction. Root privilege is required for triggering this vulnerability. | |||
| CVE-2023-30722 | 0.00 | — | 0.00 | Sep 6, 2023 | Protection Mechanism Failure in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.13.5 allows local attacker to execute arbitrary code. | |||
| CVE-2023-21507 | 0.00 | — | 0.00 | May 4, 2023 | Out-of-bounds Read vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA_ARRAY command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to read arbitrary memory. | |||
| CVE-2023-21508 | 0.00 | — | 0.00 | May 4, 2023 | Out-of-bounds Write vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code. | |||
| CVE-2023-21506 | 0.00 | — | 0.00 | May 4, 2023 | Out-of-bounds Write vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA_ARRAY command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code. | |||
| CVE-2023-21511 | 0.00 | — | 0.00 | May 4, 2023 | Out-of-bounds Read vulnerability while processing CMD_COLDWALLET_BTC_SET_PRV_UTXO in bc_core trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to read arbitrary memory. | |||
| CVE-2023-21510 | 0.00 | — | 0.00 | May 4, 2023 | Out-of-bounds Read vulnerability while processing BC_TUI_CMD_UPDATE_SCREEN in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to read arbitrary memory. | |||
| CVE-2023-21509 | 0.00 | — | 0.00 | May 4, 2023 | Out-of-bounds Write vulnerability while processing BC_TUI_CMD_UPDATE_SCREEN in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code. |
- CVE-2025-21021Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds write in drawing pinpad in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory.
- CVE-2025-21020Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds write in creating bitmap images in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory.
- CVE-2025-21018Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds read in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to read out-of-bounds memory.
- CVE-2025-21017Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds write in detaching crypto box in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory.
- CVE-2025-20901Feb 4, 2025risk 0.00cvss —epss 0.00
Out-of-bounds read in Blockchain Keystore prior to version 1.3.16.5 allows local privileged attackers to read out-of-bounds memory.
- CVE-2025-20900Feb 4, 2025risk 0.00cvss —epss 0.00
Out-of-bounds write in Blockchain Keystore prior to version 1.3.16.5 allows local privileged attackers to write out-of-bounds memory.
- CVE-2024-49406Nov 6, 2024risk 0.00cvss —epss 0.00
Improper validation of integrity check value in Blockchain Keystore prior to version 1.3.16 allows local attackers to modify transaction. Root privilege is required for triggering this vulnerability.
- CVE-2023-30722Sep 6, 2023risk 0.00cvss —epss 0.00
Protection Mechanism Failure in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.13.5 allows local attacker to execute arbitrary code.
- CVE-2023-21507May 4, 2023risk 0.00cvss —epss 0.00
Out-of-bounds Read vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA_ARRAY command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to read arbitrary memory.
- CVE-2023-21508May 4, 2023risk 0.00cvss —epss 0.00
Out-of-bounds Write vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code.
- CVE-2023-21506May 4, 2023risk 0.00cvss —epss 0.00
Out-of-bounds Write vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA_ARRAY command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code.
- CVE-2023-21511May 4, 2023risk 0.00cvss —epss 0.00
Out-of-bounds Read vulnerability while processing CMD_COLDWALLET_BTC_SET_PRV_UTXO in bc_core trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to read arbitrary memory.
- CVE-2023-21510May 4, 2023risk 0.00cvss —epss 0.00
Out-of-bounds Read vulnerability while processing BC_TUI_CMD_UPDATE_SCREEN in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to read arbitrary memory.
- CVE-2023-21509May 4, 2023risk 0.00cvss —epss 0.00
Out-of-bounds Write vulnerability while processing BC_TUI_CMD_UPDATE_SCREEN in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code.