Security Vulnerabilities - CVEs Published In August 2024
Improper handling of insufficient permission in Telephony prior to SMR Aug-2024 Release 1 allows local attackers to configure default Message application.
CVSS Score
4.0
EPSS Score
0.001
Published
2024-08-07
Improper access control in System property prior to SMR Aug-2024 Release 1 allows local attackers to access cell related information.
CVSS Score
4.0
EPSS Score
0.001
Published
2024-08-07
Improper input validation in librtp.so prior to SMR Aug-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.
CVSS Score
7.5
EPSS Score
0.015
Published
2024-08-07
Improper privilege management in SumeNNService prior to SMR Aug-2024 Release 1 allows local attackers to start privileged service.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-08-07
Improper access control in KnoxService prior to SMR Aug-2024 Release 1 allows local attackers to get sensitive information.
CVSS Score
5.1
EPSS Score
0.001
Published
2024-08-07
Out-of-bound write in libcodec2secmp4vdec.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code.
CVSS Score
7.3
EPSS Score
0.002
Published
2024-08-07
Improper access control in Galaxy Watch prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive information of Galaxy watch.
CVSS Score
4.0
EPSS Score
0.001
Published
2024-08-07
Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code.
CVSS Score
7.3
EPSS Score
0.002
Published
2024-08-07
Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to cause memory corruption.
CVSS Score
5.1
EPSS Score
0.001
Published
2024-08-07
Improper access control in SamsungHealthService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.
CVSS Score
6.2
EPSS Score
0.0
Published
2024-08-07