VYPR

Mobile

by Samsung Mobile

CVEs (36)

  • CVE-2016-9567MedNov 23, 2016
    risk 0.36cvss 5.5epss 0.01

    The mDNIe system service on Samsung Mobile S7 devices with M(6.0) software does not properly restrict setmDNIeScreenCurtain API calls, enabling attackers to control a device's screen. This can be exploited via a crafted application to eavesdrop after phone shutdown or record a…

  • CVE-2024-20813Feb 6, 2024
    risk 0.00cvss epss 0.00

    Out-of-bounds Write in padmd_vld_qtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code.

  • CVE-2023-42534Nov 7, 2023
    risk 0.00cvss epss 0.00

    Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arbitrary files with system privilege.

  • CVE-2023-30731Oct 4, 2023
    risk 0.00cvss epss 0.00

    Logic error in package installation via debugger command prior to SMR Oct-2023 Release 1 allows physical attacker to install an application that has different build type.

  • CVE-2023-30700Aug 10, 2023
    risk 0.00cvss epss 0.00

    PendingIntent hijacking vulnerability in SemWifiApTimeOutImpl in framework prior to SMR Aug-2023 Release 1 allows local attackers to access ContentProvider without proper permission.

  • CVE-2022-39897Dec 8, 2022
    risk 0.00cvss epss 0.00

    Exposure of Sensitive Information vulnerability in kernel prior to SMR Dec-2022 Release 1 allows attackers to access the kernel address information via log.

  • CVE-2022-33728Aug 5, 2022
    risk 0.00cvss epss 0.00

    Exposure of sensitive information in Bluetooth prior to SMR Aug-2022 Release 1 allows local attackers to access connected BT macAddress via Settings.Gloabal.

  • CVE-2022-30720Jun 7, 2022
    risk 0.00cvss epss 0.00

    Improper input validation check logic vulnerability in libsmkvextractor prior to SMR Jun-2022 Release 1 allows attackers to trigger crash.

  • CVE-2022-30710Jun 7, 2022
    risk 0.00cvss epss 0.00

    Improper validation vulnerability in RemoteViews prior to SMR Jun-2022 Release 1 allows attackers to launch certain activities.

  • CVE-2022-25822Mar 8, 2022
    risk 0.00cvss epss 0.00

    An use after free vulnerability in sdp driver prior to SMR Mar-2022 Release 1 allows kernel crash.

  • CVE-2018-21048Apr 8, 2020
    risk 0.00cvss epss 0.00

    An issue was discovered on Samsung mobile devices with O(8.x) software. There is a Notification leak on a locked device in Standalone Dex mode. The Samsung ID is SVE-2018-12925 (November 2018).

  • CVE-2017-18662Apr 7, 2020
    risk 0.00cvss epss 0.00

    An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) software. Data outside of the rkp log buffer boundary is read, causing an information leak. The Samsung ID is SVE-2017-9109 (July 2017).

  • CVE-2019-20582Mar 24, 2020
    risk 0.00cvss epss 0.00

    An issue was discovered on Samsung mobile devices with O(8.x) and P(9.0) devices (Exynos9810 chipsets) software. There is a use after free in the ion driver. The Samsung ID is SVE-2019-14837 (August 2019).

  • CVE-2019-20581Mar 24, 2020
    risk 0.00cvss epss 0.01

    An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) (Exynos chipsets) software. A stack overflow in the HDCP Trustlet causes arbitrary code execution. The Samsung ID is SVE-2019-14665 (August 2019).

  • CVE-2019-20580Mar 24, 2020
    risk 0.00cvss epss 0.00

    An issue was discovered on Samsung mobile devices with P(9.0) software. The Motion photo player allows attackers to bypass the Secure Folder feature to view images. The Samsung ID is SVE-2019-14653 (August 2019).

  • CVE-2014-8346Oct 24, 2014
    risk 0.00cvss epss 0.02

    The Remote Controls feature on Samsung mobile devices does not validate the source of lock-code data received over a network, which makes it easier for remote attackers to cause a denial of service (screen locking with an arbitrary code) by triggering unexpected Find My Mobile…

Page 2 of 2