Vulnerabilities
Vulnerable Software
Samsung:  Security Vulnerabilities
Stack out of bound write vulnerability in CdmaSmsParser of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.
CVSS Score
7.8
EPSS Score
0.002
Published
2023-07-06
Heap out of bound write vulnerability in IpcRxIncomingCBMsg of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.
CVSS Score
7.8
EPSS Score
0.002
Published
2023-07-06
Improper Knox ID validation logic in notification framework prior to SMR Jun-2023 Release 1 allows local attackers to read work profile notifications without proper access permission.
CVSS Score
2.4
EPSS Score
0.002
Published
2023-06-28
Improper privilege management vulnerability in CC Mode prior to SMR Jun-2023 Release 1 allows physical attackers to manipulate device to operate in way that results in unexpected behavior in CC Mode under specific condition.
CVSS Score
6.1
EPSS Score
0.004
Published
2023-06-28
Heap out-of-bound write vulnerability in Exynos baseband prior to SMR Jun-2023 Release 1 allows remote attacker to execute arbitrary code.
CVSS Score
8.8
EPSS Score
0.016
Published
2023-06-28
Improper access control vulnerability in SearchWidget prior to version 3.3 in China models allows untrusted applications to start arbitrary activity.
CVSS Score
4.4
EPSS Score
0.002
Published
2023-06-28
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. Incorrect resource transfer between spheres can cause unintended querying of the SIM status via a crafted application.
CVSS Score
9.1
EPSS Score
0.006
Published
2023-06-07
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. Incorrect resource transfer between spheres can cause changes to the activation mode of RCS via a crafted application.
CVSS Score
7.5
EPSS Score
0.005
Published
2023-06-07
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. An incorrect default permission can cause unintended querying of RCS capability via a crafted application.
CVSS Score
9.8
EPSS Score
0.006
Published
2023-06-07
Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.
CVSS Score
7.5
EPSS Score
0.005
Published
2023-05-26


Contact Us

Shodan ® - All rights reserved