Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Android
(Samsung)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 252 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-11-07 | CVE-2023-42527 | Improper input validation vulnerability in ProcessWriteFile of libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to expose sensitive information. | Android | 5.5 | ||
| 2023-11-07 | CVE-2023-42528 | Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. | Android | 7.8 | ||
| 2023-11-07 | CVE-2023-42530 | Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows attackers to enable Wi-Fi and Wi-Fi Direct without User Interaction. | Android | 7.5 | ||
| 2023-11-07 | CVE-2023-42529 | Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to execute arbitrary code. | Android | 7.8 | ||
| 2023-11-07 | CVE-2023-42531 | Improper access control vulnerability in SmsController prior to SMR Nov-2023 Release1 allows local attackers to bypass restrictions on starting activities from the background. | Android | 7.1 | ||
| 2023-11-07 | CVE-2023-42532 | Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote attacker to intercept the network traffic including Firmware information. | Android | 7.5 | ||
| 2023-11-07 | CVE-2023-42534 | Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arbitrary files with system privilege. | Android | 5.5 | ||
| 2023-11-07 | CVE-2023-42533 | Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel. | Android | 6.8 | ||
| 2023-11-07 | CVE-2023-42535 | Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. | Android | 7.8 | ||
| 2023-11-07 | CVE-2023-42536 | An improper input validation in saped_dec in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write. | Android | 7.8 |