Samsung

Android

397 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2024-49401

  • EPSS 0.04%
  • Veröffentlicht 06.11.2024 03:15:04
  • Zuletzt bearbeitet 12.11.2024 16:10:18

Improper input validation in Settings Suggestions prior to SMR Nov-2024 Release 1 allows local attackers to launch privileged activities.

5.5

CVE-2024-34673

  • EPSS 0.02%
  • Veröffentlicht 06.11.2024 03:15:03
  • Zuletzt bearbeitet 13.11.2024 00:56:39

Improper Input Validation in IpcProtocol in Modem prior to SMR Nov-2024 Release 1 allows local attackers to cause Denial-of-Service.

4.6

CVE-2024-34674

  • EPSS 0.06%
  • Veröffentlicht 06.11.2024 03:15:03
  • Zuletzt bearbeitet 12.11.2024 16:08:56

Improper access control in Contacts prior to SMR Nov-2024 Release 1 allows physical attackers to access data across multiple user profiles.

4.6

CVE-2024-34675

  • EPSS 0.05%
  • Veröffentlicht 06.11.2024 03:15:03
  • Zuletzt bearbeitet 12.11.2024 16:08:22

Improper access control in Dex Mode prior to SMR Nov-2024 Release 1 allows physical attackers to temporarily access to unlocked screen.

7.3

CVE-2024-34676

  • EPSS 0.03%
  • Veröffentlicht 06.11.2024 03:15:03
  • Zuletzt bearbeitet 12.11.2024 15:31:08

Out-of-bounds write in parsing subtitle file in libsubextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption. User interaction is required for triggering this vulnerability.

3.3

CVE-2024-34677

  • EPSS 0.04%
  • Veröffentlicht 06.11.2024 03:15:03
  • Zuletzt bearbeitet 12.11.2024 16:07:39

Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local attackers to make malicious apps appear as legitimate.

8.8

CVE-2024-34669

  • EPSS 3.82%
  • Veröffentlicht 08.10.2024 07:15:05
  • Zuletzt bearbeitet 30.10.2024 14:22:47

Out-of-bounds write in parsing h.263+ format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.

8.8

CVE-2024-34665

  • EPSS 3.82%
  • Veröffentlicht 08.10.2024 07:15:04
  • Zuletzt bearbeitet 30.10.2024 14:28:55

Out-of-bounds write in parsing h.264 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.

8.8

CVE-2024-34666

  • EPSS 3.82%
  • Veröffentlicht 08.10.2024 07:15:04
  • Zuletzt bearbeitet 30.10.2024 14:29:25

Out-of-bounds write in parsing h.264 format in a specific mode in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability...

8.8

CVE-2024-34667

  • EPSS 3.82%
  • Veröffentlicht 08.10.2024 07:15:04
  • Zuletzt bearbeitet 30.10.2024 14:29:42

Out-of-bounds write in parsing h.265 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.