Android Security Vulnerabilities
In SoundRecorder service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges
5.5CVSS
5.2AI Score
0.0004EPSS
In SoundRecorder service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges
5.5CVSS
5.2AI Score
0.0004EPSS
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In Telecom service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In urild service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed
4.4CVSS
4.8AI Score
0.0004EPSS
In jpg driver, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with System execution privileges needed
4.4CVSS
4.8AI Score
0.0004EPSS
In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed
6.7CVSS
6.7AI Score
0.0004EPSS
In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed
6.7CVSS
6.7AI Score
0.0004EPSS
There is a possible information disclosure due to a missing permission check. This could lead to local information disclosure of health data with no additional execution privileges needed.
8.4CVSS
5.4AI Score
0.0004EPSS
Improper input validation vulnerability in ProcessWriteFile of libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to expose sensitive information.
5.6CVSS
5.3AI Score
0.0004EPSS
Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
7.8CVSS
7.7AI Score
0.0004EPSS
Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to execute arbitrary code.
7.8CVSS
7.7AI Score
0.0004EPSS
Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows attackers to enable Wi-Fi and Wi-Fi Direct without User Interaction.
7.5CVSS
7.4AI Score
0.0005EPSS
Improper access control vulnerability in SmsController prior to SMR Nov-2023 Release1 allows local attackers to bypass restrictions on starting activities from the background.
7.1CVSS
6.7AI Score
0.0004EPSS
Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote attacker to intercept the network traffic including Firmware information.
7.5CVSS
7.5AI Score
0.001EPSS
Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel.
6.8CVSS
6.7AI Score
0.001EPSS
Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arbitrary files with system privilege.
6.3CVSS
5.3AI Score
0.0004EPSS
Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
8.4CVSS
7.7AI Score
0.0004EPSS
An improper input validation in saped_dec in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write.
8.4CVSS
7.3AI Score
0.0004EPSS
An improper input validation in get_head_crc in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write.
8.4CVSS
7.3AI Score
0.0004EPSS
An improper input validation in saped_rec_silence in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write.
7.8CVSS
7.3AI Score
0.0004EPSS
Improper usage of implicit intent in Contacts prior to SMR Dec-2023 Release 1 allows attacker to get sensitive information.
5.5CVSS
5.4AI Score
0.001EPSS
Out-of-bound write vulnerability in libIfaaCa prior to SMR Dec-2023 Release 1 allows local system attackers to execute arbitrary code.
6.7CVSS
6.7AI Score
0.0004EPSS
Out of bounds write vulnerability in HDCP in HAL prior to SMR Dec-2023 Release 1 allows attacker to perform code execution.
7.8CVSS
7.8AI Score
0.0004EPSS
Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time.
5.2CVSS
5.2AI Score
0.001EPSS
Heap out-of-bounds write vulnerability in dec_mono_audb of libsavsac.so prior to SMR Dec-2023 Release 1 allows an attacker to execute arbitrary code.
7.8CVSS
7.9AI Score
0.0004EPSS
Heap out-of-bounds write vulnerability in bootloader prior to SMR Dec-2023 Release 1 allows a physical attacker to execute arbitrary code.
7.1CVSS
6.8AI Score
0.001EPSS
Integer overflow vulnerability in detectionFindFaceSupportMultiInstance of libFacePreProcessingjni.camera.samsung.so prior to SMR Dec-2023 Release 1 allows attacker to trigger heap overflow.
7.8CVSS
7.6AI Score
0.0004EPSS
Integer overflow vulnerability in landmarkCopyImageToNative of libFacePreProcessingjni.camera.samsung.so prior to SMR Dec-2023 Release 1 allows attacker to trigger heap overflow.
7.8CVSS
7.6AI Score
0.0004EPSS
Improper access control in knoxcustom service prior to SMR Dec-2023 Release 1 allows attacker to send broadcast with system privilege.
6.6CVSS
5.4AI Score
0.0004EPSS
Improper input validation vulnerability in Smart Clip prior to SMR Dec-2023 Release 1 allows local attackers with shell privilege to execute arbitrary code.
7.3CVSS
6.7AI Score
0.0004EPSS
Out-of-bound write vulnerability in libsavsvc prior to SMR Dec-2023 Release 1 allows local attackers to execute arbitrary code.
7.8CVSS
7.7AI Score
0.0004EPSS
Improper size check vulnerability in softsimd prior to SMR Dec-2023 Release 1 allows stack-based buffer overflow.
7.8CVSS
7.6AI Score
0.0004EPSS
Improper access control vulnerability in SmartManagerCN prior to SMR Dec-2023 Release 1 allows local attackers to access arbitrary files with system privilege.
7.3CVSS
4.7AI Score
0.0004EPSS
Improper authorization verification vulnerability in AR Emoji prior to SMR Dec-2023 Release 1 allows attackers to read sandbox data of AR Emoji.
4CVSS
4.1AI Score
0.0004EPSS
Improper access control vulnerability in KnoxCustomManagerService prior to SMR Dec-2023 Release 1 allows attacker to access device SIM PIN.
5.9CVSS
4.1AI Score
0.0004EPSS
In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS
In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed
5.5CVSS
5.2AI Score
0.0004EPSS