Improper access control vulnerability in Phone application prior to SMR Feb-2023 Release 1 allows local attackers to access sensitive information via implicit...
5.5CVSS
5.2AI Score
0.0004EPSS
Improper Handling of Insufficient Permissions or Privileges vulnerability in SemChameleonHelper prior to SMR Jan-2023 Release 1 allows attacker to modify network related values, network code, carrier id and operator...
5.1CVSS
4.1AI Score
0.0004EPSS
Improper access control vulnerability in telecom application prior to SMR JAN-2023 Release 1 allows local attackers to get sensitive...
5.5CVSS
5.3AI Score
0.0004EPSS
Improper access control vulnerability in NfcTile prior to SMR Jan-2023 Release 1 allows to attacker to use NFC without user...
6.5CVSS
6.3AI Score
0.0004EPSS
Improper input validation vulnerability in TelephonyUI prior to SMR Jan-2023 Release 1 allows attackers to configure Preferred Call. The patch removes unused...
4CVSS
4.1AI Score
0.0004EPSS
Exposure of Sensitive Information vulnerability in Fingerprint TA prior to SMR Feb-2023 Release 1 allows attackers to access the memory address information via...
5.5CVSS
5.3AI Score
0.0004EPSS
Improper authorization vulnerability in ChnFileShareKit prior to SMR Jan-2023 Release 1 allows attacker to control BLE advertising without permission using unprotected...
5.5CVSS
5.4AI Score
0.0004EPSS
Hardcoded AES key to encrypt cardemulation PINs in NFC prior to SMR Jan-2023 Release 1 allows attackers to access cardemulation...
5.5CVSS
5.4AI Score
0.0004EPSS
Improper usage of implict intent in ePDG prior to SMR JAN-2023 Release 1 allows attacker to access...
4CVSS
4.1AI Score
0.0004EPSS
An out-of-bound read vulnerability in mapToBuffer function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR JAN-2023 Release 1 allows attacker to cause memory access...
7.8CVSS
7.3AI Score
0.0004EPSS
Improper Handling of Insufficient Permissions or Privileges vulnerability in KnoxCustomManagerService prior to SMR Jan-2023 Release 1 allows attacker to access device SIM...
7.8CVSS
7.5AI Score
0.0004EPSS
Use of Externally-Controlled Format String vulnerabilities in STST TA prior to SMR Jan-2023 Release 1 allows arbitrary code...
7.8CVSS
8AI Score
0.0004EPSS
An improper implementation logic in Secure Folder prior to SMR Jan-2023 Release 1 allows the Secure Folder container remain unlocked under certain...
7.5CVSS
7.4AI Score
0.001EPSS
Improper authorization vulnerability in semAddPublicDnsAddr in WifiSevice prior to SMR Jan-2023 Release 1 allows attackers to set custom DNS server without permission via binding...
5.7CVSS
5.4AI Score
0.0004EPSS
Exposure of Sensitive Information from an Unauthorized Actor vulnerability in Samsung DisplayManagerService prior to Android T(13) allows local attacker to access connected DLNA device...
4CVSS
3.9AI Score
0.0004EPSS
Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles...
6.8CVSS
3.9AI Score
0.0004EPSS
Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in PersonaManagerService prior to Android T(13) allows local attackers to set some setting value in Secure...
6.2CVSS
3.9AI Score
0.0004EPSS
Exposure of Sensitive Information vulnerability in kernel prior to SMR Dec-2022 Release 1 allows attackers to access the kernel address information via...
5.5CVSS
5.2AI Score
0.0004EPSS
Improper access control vulnerability in RCS call prior to SMR Dec-2022 Release 1 allows local attackers to access RCS incoming call...
4CVSS
4AI Score
0.0004EPSS
Improper authentication in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to disable the network traffic encryption between UE and...
6.5CVSS
6.6AI Score
0.001EPSS
Integer overflow vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds...
7.8CVSS
7.5AI Score
0.0004EPSS
Improper authorization in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to get sensitive information including IMEI via emergency...
7.5CVSS
7.3AI Score
0.001EPSS
Implicit intent hijacking vulnerability in Telecom application prior to SMR Dec-2022 Release 1 allows attacker to access sensitive information via implicit...
5.5CVSS
5.2AI Score
0.0004EPSS
Improper access control vulnerability in SecTelephonyProvider prior to SMR Dec-2022 Release 1 allows attackers to access message...
3.3CVSS
4.1AI Score
0.0004EPSS
Improper access control vulnerability in IIccPhoneBook prior to SMR Dec-2022 Release 1 allows attackers to access some information of...
4CVSS
4AI Score
0.0004EPSS
Improper authentication vulnerability in Samsung WindowManagerService prior to SMR Dec-2022 Release 1 allows attacker to send the input event using S Pen...
5.7CVSS
4.7AI Score
0.0004EPSS
TOCTOU vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds...
7.4CVSS
7.2AI Score
0.0005EPSS
Improper access control vulnerability in Nice Catch prior to SMR Dec-2022 Release 1 allows physical attackers to access contents of all toast generated in the application installed in Secure Folder through Nice...
4.6CVSS
4.5AI Score
0.0005EPSS
Exposure of Sensitive Information vulnerability in Samsung Settings prior to SMR Dec-2022 Release 1 allows local attackers to access the Network Access Identifier via...
3.3CVSS
4AI Score
0.0004EPSS
Improper access control vulnerability in ContactListStartActivityHelper in Phone prior to SMR Dec-2022 Release 1 allows to access sensitive information via implicit...
4CVSS
3.9AI Score
0.0004EPSS
Improper access control vulnerability in ContactListUtils in Phone prior to SMR Dec-2022 Release 1 allows to access contact group information via implicit...
4CVSS
4AI Score
0.0004EPSS
Improper access control vulnerabilities in Contacts prior to SMR Dec-2022 Release 1 allows to access sensitive information via implicit...
4CVSS
4.1AI Score
0.0004EPSS
Improper authorization vulnerability in StorageManagerService prior to SMR Nov-2022 Release 1 allows local attacker to call privileged...
7.8CVSS
7.3AI Score
0.0004EPSS
Improper access control vulnerability in IpcRxServiceModeBigDataInfo in RIL prior to SMR Nov-2022 Release 1 allows local attacker to access Device...
5.9CVSS
4AI Score
0.0004EPSS
Improper access control vulnerability in IImsService prior to SMR Nov-2022 Release 1 allows local attacker to access to Call...
4.3CVSS
4AI Score
0.0004EPSS
Improper access control vulnerability in BootCompletedReceiver_CMCC in DeviceManagement prior to SMR Nov-2022 Release 1 allows local attacker to access to Device...
5.9CVSS
4AI Score
0.0004EPSS
Improper access control vulnerability in clearAllGlobalProxy in MiscPolicy prior to SMR Nov-2022 Release 1 allows local attacker to configure EDM...
4.3CVSS
4AI Score
0.0004EPSS
Improper input validation vulnerability in DualOutFocusViewer prior to SMR Nov-2022 Release 1 allows local attacker to perform an arbitrary code...
7.8CVSS
7.7AI Score
0.0004EPSS
Heap overflow vulnerability in sflacf_fal_bytes_peek function in libsmat.so library prior to SMR Nov-2022 Release 1 allows local attacker to execute arbitrary...
8CVSS
7.8AI Score
0.0004EPSS
Improper input validation vulnerability for processing SIB12 PDU in Exynos modems prior to SMR Sep-2022 Release allows remote attacker to read out of bounds...
9.1CVSS
8.9AI Score
0.002EPSS
Improper authorization vulnerability in?CallBGProvider prior to SMR Nov-2022 Release 1 allows local attacker to grant permission for accessing information with phone...
5.9CVSS
3.8AI Score
0.0004EPSS
Improper authorization in Dynamic Lockscreen prior to SMR Sep-2022 Release 1 in Android R(11) and 3.3.03.66 in Android S(12) allows unauthorized use of javascript interface...
9.8CVSS
9AI Score
0.001EPSS
Improper access control vulnerability in FACM application prior to SMR Oct-2022 Release 1 allows a local attacker to connect arbitrary AP and Bluetooth...
5.1CVSS
4.6AI Score
0.0004EPSS
Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call...
4CVSS
4AI Score
0.0004EPSS
Improper access control vulnerability in CocktailBarService prior to SMR Oct-2022 Release 1 allows local attacker to bind service that require BIND_REMOTEVIEWS...
4CVSS
4AI Score
0.0004EPSS
A heap-based overflow vulnerability in makeContactAGIF in libagifencoder.quram.so library prior to SMR Oct-2022 Release 1 allows attacker to perform code...
8CVSS
7.8AI Score
0.0004EPSS
A use after free vulnerability in perf-mgr driver prior to SMR Oct-2022 Release 1 allows attacker to cause memory access...
7.8CVSS
7.5AI Score
0.0004EPSS
Improper protection in IOMMU prior to SMR Oct-2022 Release 1 allows unauthorized access to secure...
7.8CVSS
7.5AI Score
0.0004EPSS
Use after free vulnerability in set_nft_pid and signal_handler function of NFC driver prior to SMR Oct-2022 Release 1 allows attackers to perform malicious...
5.3CVSS
5.6AI Score
0.0004EPSS
Exposure of sensitive information in AT_Distributor prior to SMR Oct-2022 Release 1 allows local attacker to access SerialNo via...
4CVSS
3.7AI Score
0.0004EPSS