Shodan
Vulnerabilities
Vulnerable Software
Samsung:  Security Vulnerabilities
CVE-2024-49408
Out-of-bounds write in usb driver prior to Firmware update Sep-2024 Release on Galaxy S24 allows local attackers to write out-of-bounds memory. System privilege is required for triggering this vulnerability.
CVSS Score
6.4
EPSS Score
0.0
Published
2024-11-06
CVE-2024-49409
Out-of-bounds write in Battery Full Capacity node prior to Firmware update Sep-2024 Release on Galaxy S24 allows local attackers to write out-of-bounds memory. System privilege is required for triggering this vulnerability.
CVSS Score
6.4
EPSS Score
0.0
Published
2024-11-06
CVE-2024-49402
Improper input validation in Dressroom prior to SMR Nov-2024 Release 1 allow physical attackers to access data across multiple user profiles.
CVSS Score
4.6
EPSS Score
0.001
Published
2024-11-06
CVE-2024-49403
Improper access control in Samsung Voice Recorder prior to version 21.5.40.37 allows physical attackers to access recording files on the lock screen.
CVSS Score
4.6
EPSS Score
0.001
Published
2024-11-06
CVE-2024-49404
Improper Access Control in Samsung Video Player prior to versions 7.3.29.1 in Android 12, 7.3.36.1 in Android 13, and 7.3.41.230 in Android 14 allows physical attackers to access video file of other users.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-11-06
CVE-2024-49405
Improper authentication in Private Info in Samsung Pass in prior to version 4.4.04.7 allows physical attackers to access sensitive information in a specific scenario.
CVSS Score
5.3
EPSS Score
0.0
Published
2024-11-06
CVE-2024-49406
Improper validation of integrity check value in Blockchain Keystore prior to version 1.3.16 allows local attackers to modify transaction. Root privilege is required for triggering this vulnerability.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-11-06
CVE-2024-49407
Improper access control in Samsung Flow prior to version 4.9.15.7 allows physical attackers to access data across multiple user profiles.
CVSS Score
4.6
EPSS Score
0.001
Published
2024-11-06
CVE-2024-34678
Out-of-bounds write in libsapeextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption.
CVSS Score
5.9
EPSS Score
0.0
Published
2024-11-06
CVE-2024-34679
Incorrect default permissions in Crane prior to SMR Nov-2024 Release 1 allows local attackers to access files with phone privilege.
CVSS Score
4.0
EPSS Score
0.0
Published
2024-11-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved