Vulnerabilities > Samsung > Android

DATE CVE VULNERABILITY TITLE RISK
2023-11-07 CVE-2023-30739 Unspecified vulnerability in Samsung Android 11.0/12.0
Arbitrary File Descriptor Write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
local
low complexity
samsung
7.8
2023-11-07 CVE-2023-42527 Improper Input Validation vulnerability in Samsung Android 11.0/12.0
Improper input validation vulnerability in ProcessWriteFile of libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to expose sensitive information.
local
low complexity
samsung CWE-20
5.5
2023-11-07 CVE-2023-42528 Out-of-bounds Write vulnerability in Samsung Android 11.0/12.0
Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
local
low complexity
samsung CWE-787
7.8
2023-11-07 CVE-2023-42529 Out-of-bounds Write vulnerability in Samsung Android 11.0/12.0/13.0
Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to execute arbitrary code.
local
low complexity
samsung CWE-787
7.8
2023-11-07 CVE-2023-42530 Unspecified vulnerability in Samsung Android 11.0/12.0
Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows attackers to enable Wi-Fi and Wi-Fi Direct without User Interaction.
network
low complexity
samsung
7.5
2023-11-07 CVE-2023-42531 Improper Authentication vulnerability in Samsung Android 11.0/12.0
Improper access control vulnerability in SmsController prior to SMR Nov-2023 Release1 allows local attackers to bypass restrictions on starting activities from the background.
local
low complexity
samsung CWE-287
7.1
2023-11-07 CVE-2023-42532 Improper Certificate Validation vulnerability in Samsung Android 11.0/12.0
Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote attacker to intercept the network traffic including Firmware information.
network
low complexity
samsung CWE-295
7.5
2023-11-07 CVE-2023-42533 Unspecified vulnerability in Samsung Android 12.0/13.0
Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel.
low complexity
samsung
6.8
2023-11-07 CVE-2023-42534 Files or Directories Accessible to External Parties vulnerability in Samsung Android 12.0/13.0
Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arbitrary files with system privilege.
local
low complexity
samsung CWE-552
5.5
2023-11-07 CVE-2023-42535 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0
Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
local
low complexity
samsung CWE-787
7.8