Filtered by vendor Samsung
Subscriptions
Total
969 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-42547 | 1 Samsung | 1 Account | 2023-11-13 | 6.5 Medium |
| Use of implicit intent for sensitive communication vulnerability in startEmailValidationActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | ||||
| CVE-2023-42546 | 1 Samsung | 1 Account | 2023-11-13 | 6.5 Medium |
| Use of implicit intent for sensitive communication vulnerability in startAgreeToDisclaimerActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | ||||
| CVE-2023-42551 | 1 Samsung | 1 Account | 2023-11-13 | 6.5 Medium |
| Use of implicit intent for sensitive communication vulnerability in startTncActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | ||||
| CVE-2023-42533 | 1 Samsung | 1 Android | 2023-11-13 | 6.8 Medium |
| Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel. | ||||
| CVE-2023-42535 | 1 Samsung | 1 Android | 2023-11-13 | 7.8 High |
| Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. | ||||
| CVE-2023-42534 | 1 Samsung | 1 Android | 2023-11-13 | 5.5 Medium |
| Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arbitrary files with system privilege. | ||||
| CVE-2023-42532 | 1 Samsung | 1 Android | 2023-11-13 | 7.5 High |
| Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote attacker to intercept the network traffic including Firmware information. | ||||
| CVE-2023-42529 | 1 Samsung | 1 Android | 2023-11-13 | 7.8 High |
| Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to execute arbitrary code. | ||||
| CVE-2023-42530 | 1 Samsung | 1 Android | 2023-11-13 | 7.5 High |
| Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows attackers to enable Wi-Fi and Wi-Fi Direct without User Interaction. | ||||
| CVE-2023-42528 | 1 Samsung | 1 Android | 2023-11-13 | 7.8 High |
| Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. | ||||
| CVE-2023-42527 | 1 Samsung | 1 Android | 2023-11-13 | 5.5 Medium |
| Improper input validation vulnerability in ProcessWriteFile of libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to expose sensitive information. | ||||
| CVE-2023-30738 | 1 Samsung | 8 Galaxy Book, Galaxy Book Firmware, Galaxy Book Odyssey and 5 more | 2023-11-07 | 7.8 High |
| An improper input validation in UEFI Firmware prior to Firmware update Oct-2023 Release in Galaxy Book, Galaxy Book Pro, Galaxy Book Pro 360 and Galaxy Book Odyssey allows local attacker to execute SMM memory corruption. | ||||
| CVE-2023-30737 | 1 Samsung | 1 Health | 2023-11-07 | 5.5 Medium |
| Improper access control vulnerability in Samsung Health prior to version 6.24.3.007 allows attackers to access sensitive information via implicit intent. | ||||
| CVE-2023-30736 | 1 Samsung | 1 Samsung Assistant | 2023-11-07 | 5.4 Medium |
| Improper authorization in PushMsgReceiver of Samsung Assistant prior to version 8.7.00.1 allows attacker to execute javascript interface. To trigger this vulnerability, user interaction is required. | ||||
| CVE-2023-30735 | 1 Samsung | 1 Sassistant | 2023-11-07 | 3.3 Low |
| Improper Preservation of Permissions vulnerability in SAssistant prior to version 8.7 allows local attackers to access backup data in SAssistant. | ||||
| CVE-2023-30734 | 1 Samsung | 1 Health | 2023-11-07 | 5.5 Medium |
| Improper access control vulnerability in Samsung Health prior to version 6.24.3.007 allows attackers to access sensitive information via implicit intent. | ||||
| CVE-2023-30732 | 1 Samsung | 1 Android | 2023-11-07 | 3.3 Low |
| Improper access control in system property prior to SMR Oct-2023 Release 1 allows local attacker to get CPU serial number. | ||||
| CVE-2023-30731 | 1 Samsung | 1 Android | 2023-11-07 | 4.6 Medium |
| Logic error in package installation via debugger command prior to SMR Oct-2023 Release 1 allows physical attacker to install an application that has different build type. | ||||
| CVE-2023-30730 | 2 Google, Samsung | 2 Android, Camera | 2023-11-07 | 5.5 Medium |
| Implicit intent hijacking vulnerability in Camera prior to versions 11.0.16.43 in Android 11, 12.1.00.30, 12.0.07.53, 12.1.03.10 in Android 12, and 13.0.01.43, 13.1.00.83 in Android 13 allows local attacker to access specific file. | ||||
| CVE-2023-30729 | 1 Samsung | 1 Email | 2023-11-07 | 7.5 High |
| Improper Certificate Validation in Samsung Email prior to version 6.1.82.0 allows remote attacker to intercept the network traffic including sensitive information. | ||||