Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In October 2021
CVE-2021-25490
A keyblob downgrade attack in keymaster prior to SMR Oct-2021 Release 1 allows attacker to trigger IV reuse vulnerability with privileged process.
CVSS Score
6.0
EPSS Score
0.0
Published
2021-10-06
CVE-2021-25491
A vulnerability in mfc driver prior to SMR Oct-2021 Release 1 allows memory corruption via NULL-pointer dereference.
CVSS Score
2.3
EPSS Score
0.0
Published
2021-10-06
CVE-2021-25492
Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read.
CVSS Score
7.3
EPSS Score
0.001
Published
2021-10-06
CVE-2021-25493
Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read
CVSS Score
4.0
EPSS Score
0.001
Published
2021-10-06
CVE-2021-25494
A possible buffer overflow vulnerability in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows arbitrary code execution.
CVSS Score
4.0
EPSS Score
0.001
Published
2021-10-06
CVE-2021-25495
A possible heap buffer overflow vulnerability in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows arbitrary code execution.
CVSS Score
7.3
EPSS Score
0.001
Published
2021-10-06
CVE-2021-25467
Assuming system privilege is gained, possible buffer overflow vulnerabilities in the Vision DSP kernel driver prior to SMR Oct-2021 Release 1 allows privilege escalation to Root by hijacking loaded library.
CVSS Score
5.3
EPSS Score
0.0
Published
2021-10-06
CVE-2021-25468
A possible guessing and confirming a byte memory vulnerability in Widevine trustlet prior to SMR Oct-2021 Release 1 allows attackers to read arbitrary memory address.
CVSS Score
4.4
EPSS Score
0.0
Published
2021-10-06
CVE-2021-25469
A possible stack-based buffer overflow vulnerability in Widevine trustlet prior to SMR Oct-2021 Release 1 allows arbitrary code execution.
CVSS Score
6.0
EPSS Score
0.0
Published
2021-10-06
CVE-2021-25470
An improper caller check logic of SMC call in TEEGRIS secure OS prior to SMR Oct-2021 Release 1 can be used to compromise TEE.
CVSS Score
7.9
EPSS Score
0.001
Published
2021-10-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved