Samsung

Android

374 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.6

CVE-2024-34675

  • EPSS 0.05%
  • Veröffentlicht 06.11.2024 03:15:03
  • Zuletzt bearbeitet 12.11.2024 16:08:22

Improper access control in Dex Mode prior to SMR Nov-2024 Release 1 allows physical attackers to temporarily access to unlocked screen.

7.3

CVE-2024-34676

  • EPSS 0.03%
  • Veröffentlicht 06.11.2024 03:15:03
  • Zuletzt bearbeitet 12.11.2024 15:31:08

Out-of-bounds write in parsing subtitle file in libsubextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption. User interaction is required for triggering this vulnerability.

3.3

CVE-2024-34677

  • EPSS 0.04%
  • Veröffentlicht 06.11.2024 03:15:03
  • Zuletzt bearbeitet 12.11.2024 16:07:39

Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local attackers to make malicious apps appear as legitimate.

8.8

CVE-2024-34669

  • EPSS 0.6%
  • Veröffentlicht 08.10.2024 07:15:05
  • Zuletzt bearbeitet 30.10.2024 14:22:47

Out-of-bounds write in parsing h.263+ format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.

8.8

CVE-2024-34665

  • EPSS 0.6%
  • Veröffentlicht 08.10.2024 07:15:04
  • Zuletzt bearbeitet 30.10.2024 14:28:55

Out-of-bounds write in parsing h.264 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.

8.8

CVE-2024-34666

  • EPSS 0.6%
  • Veröffentlicht 08.10.2024 07:15:04
  • Zuletzt bearbeitet 30.10.2024 14:29:25

Out-of-bounds write in parsing h.264 format in a specific mode in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability...

8.8

CVE-2024-34667

  • EPSS 0.6%
  • Veröffentlicht 08.10.2024 07:15:04
  • Zuletzt bearbeitet 30.10.2024 14:29:42

Out-of-bounds write in parsing h.265 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.

8.8

CVE-2024-34668

  • EPSS 0.6%
  • Veröffentlicht 08.10.2024 07:15:04
  • Zuletzt bearbeitet 30.10.2024 14:31:12

Out-of-bounds write in parsing h.263 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.

7.8

CVE-2024-34662

  • EPSS 0.03%
  • Veröffentlicht 08.10.2024 07:15:03
  • Zuletzt bearbeitet 15.11.2024 16:34:28

Improper access control in ActivityManager prior to SMR Oct-2024 Release 1 in select Android 12, 13 and SMR Sep-2024 Release 1 in select Android 14 allows local attackers to execute privileged behaviors.

3.3

CVE-2024-34652

  • EPSS 0.04%
  • Veröffentlicht 04.09.2024 06:15:15
  • Zuletzt bearbeitet 05.09.2024 17:59:08

Incorrect authorization in kperfmon prior to SMR Sep-2024 Release 1 allows local attackers to access information related to performance including app usage.