Vulnerabilities > Samsung > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-04 | CVE-2023-21501 | Improper Input Validation vulnerability in Samsung Android 13.0 Improper input validation vulnerability in mPOS fiserve trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code. | 7.8 |
| 2023-05-04 | CVE-2023-21502 | Improper Input Validation vulnerability in Samsung Android 12.0/13.0 Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands. | 7.8 |
| 2023-03-16 | CVE-2023-21457 | Unspecified vulnerability in Samsung Android 11.0/12.0/13.0 Improper access control vulnerability in Bluetooth prior to SMR Mar-2023 Release 1 allows attackers to send file via Bluetooth without related permission. low complexity samsung | 8.1 |
| 2023-02-09 | CVE-2023-21420 | Use of Externally-Controlled Format String vulnerability in Samsung Android 10.0/11.0 Use of Externally-Controlled Format String vulnerabilities in STST TA prior to SMR Jan-2023 Release 1 allows arbitrary code execution. | 7.8 |
| 2023-02-09 | CVE-2023-21421 | Improper Privilege Management vulnerability in Samsung Android 10.0/11.0 Improper Handling of Insufficient Permissions or Privileges vulnerability in KnoxCustomManagerService prior to SMR Jan-2023 Release 1 allows attacker to access device SIM PIN. | 7.8 |
| 2023-02-09 | CVE-2023-21430 | Out-of-bounds Read vulnerability in Samsung Android 10.0/11.0 An out-of-bound read vulnerability in mapToBuffer function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR JAN-2023 Release 1 allows attacker to cause memory access fault. | 7.8 |
| 2023-02-09 | CVE-2023-21439 | Improper Input Validation vulnerability in Samsung Android 12.0/13.0 Improper input validation vulnerability in UwbDataTxStatusEvent prior to SMR Feb-2023 Release 1 allows attackers to launch certain activities. | 7.8 |
| 2023-02-09 | CVE-2023-21445 | Exposure of Resource to Wrong Sphere vulnerability in Samsung Android 11.0/12.0 Improper access control vulnerability in MyFiles prior to versions 12.2.09 in Android R(11), 13.1.03.501 in Android S(12) and 14.1.00.422 in Android T(13) allows local attacker to write file with MyFiles privilege via implicit intent. | 7.8 |
| 2023-02-09 | CVE-2023-21451 | Out-of-bounds Write vulnerability in Samsung Android 12.0 A Stack-based overflow vulnerability in IpcRxEmbmsSessionList in SECRIL prior to Android S(12) allows attacker to cause memory corruptions. | 7.8 |