Security Vulnerabilities - CVEs Published In August 2024
Out-of-bounds read in applying own binary in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-08-07
Improper handling of insufficient permission in KnoxDualDARPolicy prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive data.
CVSS Score
5.1
EPSS Score
0.001
Published
2024-08-07
Improper handling of insufficient permission in Telephony prior to SMR Aug-2024 Release 1 allows local attackers to configure default Message application.
CVSS Score
4.0
EPSS Score
0.001
Published
2024-08-07
Improper access control in System property prior to SMR Aug-2024 Release 1 allows local attackers to access cell related information.
CVSS Score
4.0
EPSS Score
0.001
Published
2024-08-07
Improper input validation in librtp.so prior to SMR Aug-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.
CVSS Score
7.5
EPSS Score
0.022
Published
2024-08-07
Improper privilege management in SumeNNService prior to SMR Aug-2024 Release 1 allows local attackers to start privileged service.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-08-07
Improper access control in KnoxService prior to SMR Aug-2024 Release 1 allows local attackers to get sensitive information.
CVSS Score
5.1
EPSS Score
0.0
Published
2024-08-07
Out-of-bound write in libcodec2secmp4vdec.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code.
CVSS Score
7.3
EPSS Score
0.001
Published
2024-08-07
Improper access control in Galaxy Watch prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive information of Galaxy watch.
CVSS Score
4.0
EPSS Score
0.001
Published
2024-08-07
Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code.
CVSS Score
7.3
EPSS Score
0.001
Published
2024-08-07