Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-06 | CVE-2024-34675 | Unspecified vulnerability in Samsung Android 14.0 Improper access control in Dex Mode prior to SMR Nov-2024 Release 1 allows physical attackers to temporarily access to unlocked screen. low complexity samsung | 4.6 |
| 2024-11-06 | CVE-2024-34676 | Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0/14.0 Out-of-bounds write in parsing subtitle file in libsubextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption. | 7.3 |
| 2024-11-06 | CVE-2024-34677 | Insecure Storage of Sensitive Information vulnerability in Samsung Android 12.0/13.0/14.0 Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local attackers to make malicious apps appear as legitimate. | 3.3 |
| 2024-11-06 | CVE-2024-34678 | Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0/14.0 Out-of-bounds write in libsapeextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption. | 7.8 |
| 2024-11-06 | CVE-2024-34679 | Incorrect Default Permissions vulnerability in Samsung Android 14.0 Incorrect default permissions in Crane prior to SMR Nov-2024 Release 1 allows local attackers to access files with phone privilege. | 7.1 |
| 2024-11-06 | CVE-2024-34680 | Unspecified vulnerability in Samsung Android 12.0/13.0/14.0 Use of implicit intent for sensitive communication in WlanTest prior to SMR Nov-2024 Release 1 allows local attackers to get sensitive information. | 5.5 |
| 2024-11-06 | CVE-2024-34682 | Unspecified vulnerability in Samsung Android 14.0 Improper authorization in Settings prior to SMR Nov-2024 Release 1 allows physical attackers to access stored WiFi password in Maintenance Mode. low complexity samsung | 2.4 |
| 2024-11-06 | CVE-2024-49401 | Unspecified vulnerability in Samsung Android 13.0/14.0 Improper input validation in Settings Suggestions prior to SMR Nov-2024 Release 1 allows local attackers to launch privileged activities. | 7.1 |
| 2024-11-06 | CVE-2024-49402 | Unspecified vulnerability in Samsung Android 14.0 Improper input validation in Dressroom prior to SMR Nov-2024 Release 1 allow physical attackers to access data across multiple user profiles. low complexity samsung | 4.6 |
| 2024-11-06 | CVE-2024-49403 | Unspecified vulnerability in Samsung Voice Recorder Improper access control in Samsung Voice Recorder prior to version 21.5.40.37 allows physical attackers to access recording files on the lock screen. low complexity samsung | 4.6 |