CVE-2024-20866
- EPSS 0.28%
- Veröffentlicht 07.05.2024 05:15:50
- Zuletzt bearbeitet 10.02.2025 21:55:33
Authentication bypass vulnerability in Setupwizard prior to SMR May-2024 Release 1 allows physical attackers to skip activation step.
CVE-2024-20856
- EPSS 0.29%
- Veröffentlicht 07.05.2024 05:15:49
- Zuletzt bearbeitet 07.02.2025 20:14:03
Improper Authentication vulnerability in Secure Folder prior to SMR May-2024 Release 1 allows physical attackers to access Secure Folder without proper authentication in a specific scenario.
CVE-2024-20857
- EPSS 0.15%
- Veröffentlicht 07.05.2024 05:15:49
- Zuletzt bearbeitet 10.02.2025 20:41:10
Improper access control vulnerability in startListening of CocktailBarService prior to SMR May-2024 Release 1 allows local attackers to access information of current application.
CVE-2024-20858
- EPSS 0.15%
- Veröffentlicht 07.05.2024 05:15:49
- Zuletzt bearbeitet 10.02.2025 20:35:51
Improper access control vulnerability in setCocktailHostCallbacks of CocktailBarService prior to SMR May-2024 Release 1 allows local attackers to access information of current application.
CVE-2024-20859
- EPSS 0.16%
- Veröffentlicht 07.05.2024 05:15:49
- Zuletzt bearbeitet 10.02.2025 21:16:57
Improper access control vulnerability in FactoryCamera prior to SMR May-2024 Release 1 allows local attackers to take pictures without privilege.
CVE-2024-20860
- EPSS 0.14%
- Veröffentlicht 07.05.2024 05:15:49
- Zuletzt bearbeitet 07.02.2025 20:14:39
Improper export of android application components vulnerability in TelephonyUI prior to SMR May-2024 Release 1 allows local attackers to reboot the device without proper permission.
CVE-2024-20861
- EPSS 0.19%
- Veröffentlicht 07.05.2024 05:15:49
- Zuletzt bearbeitet 10.02.2025 21:40:55
Use after free vulnerability in SveService prior to SMR May-2024 Release 1 allows local privileged attackers to cause memory corruption.
CVE-2024-20855
- EPSS 0.25%
- Veröffentlicht 07.05.2024 05:15:48
- Zuletzt bearbeitet 07.02.2025 20:12:50
Improper access control vulnerability in multitasking framework prior to SMR May-2024 Release 1 allows physical attackers to access unlocked screen for a while.
CVE-2024-20846
- EPSS 0.18%
- Veröffentlicht 02.04.2024 03:15:09
- Zuletzt bearbeitet 07.02.2025 17:25:09
Out-of-bounds write vulnerability while decoding hcr of libsavsac.so prior to SMR Apr-2024 Release 1 allows local attacker to execute arbitrary code.
CVE-2024-20847
- EPSS 0.14%
- Veröffentlicht 02.04.2024 03:15:09
- Zuletzt bearbeitet 07.02.2025 17:20:47
Improper Access Control vulnerability in StorageManagerService prior to SMR Apr-2024 Release 1 allows local attackers to read sdcard information.