VYPR

Blockchain Keystore

by Samsung Mobile

CVEs (14)

  • CVE-2024-49406MedNov 6, 2024
    risk 0.44cvss 6.7epss 0.00

    Improper validation of integrity check value in Blockchain Keystore prior to version 1.3.16 allows local attackers to modify transaction. Root privilege is required for triggering this vulnerability.

  • CVE-2023-21509MedMay 4, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write vulnerability while processing BC_TUI_CMD_UPDATE_SCREEN in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code.

  • CVE-2023-21508MedMay 4, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code.

  • CVE-2023-21506MedMay 4, 2023
    risk 0.44cvss 6.7epss 0.00

    Out-of-bounds Write vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA_ARRAY command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code.

  • CVE-2025-21017MedAug 6, 2025
    risk 0.41cvss 6.3epss 0.00

    Out-of-bounds write in detaching crypto box in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory.

  • CVE-2025-20900MedFeb 4, 2025
    risk 0.41cvss 6.3epss 0.00

    Out-of-bounds write in Blockchain Keystore prior to version 1.3.16.5 allows local privileged attackers to write out-of-bounds memory.

  • CVE-2025-21021MedAug 6, 2025
    risk 0.37cvss 5.7epss 0.00

    Out-of-bounds write in drawing pinpad in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory.

  • CVE-2025-21020MedAug 6, 2025
    risk 0.37cvss 5.7epss 0.00

    Out-of-bounds write in creating bitmap images in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory.

  • CVE-2023-30722MedSep 6, 2023
    risk 0.36cvss 5.5epss 0.00

    Protection Mechanism Failure in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.13.5 allows local attacker to execute arbitrary code.

  • CVE-2025-21018MedAug 6, 2025
    risk 0.29cvss 4.4epss 0.00

    Out-of-bounds read in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to read out-of-bounds memory.

  • CVE-2025-20901MedFeb 4, 2025
    risk 0.29cvss 4.4epss 0.00

    Out-of-bounds read in Blockchain Keystore prior to version 1.3.16.5 allows local privileged attackers to read out-of-bounds memory.

  • CVE-2023-21511MedMay 4, 2023
    risk 0.29cvss 4.4epss 0.00

    Out-of-bounds Read vulnerability while processing CMD_COLDWALLET_BTC_SET_PRV_UTXO in bc_core trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to read arbitrary memory.

  • CVE-2023-21510MedMay 4, 2023
    risk 0.29cvss 4.4epss 0.00

    Out-of-bounds Read vulnerability while processing BC_TUI_CMD_UPDATE_SCREEN in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to read arbitrary memory.

  • CVE-2023-21507MedMay 4, 2023
    risk 0.29cvss 4.4epss 0.00

    Out-of-bounds Read vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA_ARRAY command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to read arbitrary memory.