Samsung: Security Vulnerabilities
Improper input validation in Tips prior to version 6.2.9.4 in Android 14 allows local attacker to send broadcast with Tips' privilege.
CVSS Score
4.0
EPSS Score
0.001
Published
2024-07-02
Improper verification of intent by broadcast receiver vulnerability in Samsung Flow prior to version 4.9.13.0 allows local attackers to copy image files to external storage.
CVSS Score
4.4
EPSS Score
0.001
Published
2024-07-02
Improper verification of intent by broadcast receiver vulnerability in GalaxyStore prior to version 4.5.81.0 allows local attackers to launch unexported activities of GalaxyStore.
CVSS Score
5.9
EPSS Score
0.001
Published
2024-07-02
Improper input validation in parsing RTCP RR packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to trigger temporary denial of service. User interaction is required for triggering this vulnerability.
CVSS Score
5.3
EPSS Score
0.011
Published
2024-07-02
Improper input validation혻in parsing an item type from RTCP SDES packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to trigger temporary denial of service. User interaction is required for triggering this vulnerability.
CVSS Score
5.3
EPSS Score
0.006
Published
2024-07-02
Improper input validation in parsing an item data from RTCP SDES packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to trigger temporary denial of service. User interaction is required for triggering this vulnerability.
CVSS Score
5.3
EPSS Score
0.006
Published
2024-07-02
Improper input validation in parsing RTCP SDES packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to trigger temporary denial of service. User interaction is required for triggering this vulnerability.
CVSS Score
5.3
EPSS Score
0.006
Published
2024-07-02
Improper input validation in parsing and distributing RTCP packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability.
CVSS Score
7.5
EPSS Score
0.014
Published
2024-07-02
Exposure of sensitive information in proc file system prior to SMR Jul-2024 Release 1 allows local attackers to read kernel memory address.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-07-02
Improper access control in system property prior to SMR Jul-2024 Release 1 allows local attackers to get device identifier.
CVSS Score
4.0
EPSS Score
0.001
Published
2024-07-02