Vulnerabilities > Samsung > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-04 | CVE-2024-34645 | Unspecified vulnerability in Samsung Android 12.0/13.0 Improper input validation in ThemeCenter prior to SMR Sep-2024 Release 1 allows physical attackers to install privileged applications. low complexity samsung | 4.6 |
| 2024-09-04 | CVE-2024-34646 | Unspecified vulnerability in Samsung Android 12.0/13.0/14.0 Improper access control in DualDarManagerProxy prior to SMR Sep-2024 Release 1 allows local attackers to cause local permanent denial of service. | 5.5 |
| 2024-09-04 | CVE-2024-34647 | Unspecified vulnerability in Samsung Android 12.0/13.0/14.0 Incorrect use of privileged API in DualDarManagerProxy prior to SMR Sep-2024 Release 1 allows local attackers to access privileged APIs related to knox without proper license. | 5.5 |
| 2024-09-04 | CVE-2024-34648 | Incorrect Default Permissions vulnerability in Samsung Android 12.0/13.0/14.0 Improper Handling of Insufficient Permissions in KnoxMiscPolicy prior to SMR Sep-2024 Release 1 allows local attackers to access sensitive data. | 5.5 |
| 2024-09-04 | CVE-2024-34651 | Incorrect Authorization vulnerability in Samsung Android 12.0/13.0/14.0 Improper authorization in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access restricted data in My Files. | 5.5 |
| 2024-09-04 | CVE-2024-34653 | Path Traversal vulnerability in Samsung Android 12.0/13.0/14.0 Path Traversal in My Files prior to SMR Sep-2024 Release 1 allows physical attackers to access directories with My Files' privilege. | 4.6 |
| 2024-09-04 | CVE-2024-34654 | Unspecified vulnerability in Samsung Android 13.0/14.0 Improper Export of android application component in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access files with My Files' privilege. | 5.5 |
| 2024-09-04 | CVE-2024-34655 | Unspecified vulnerability in Samsung Android 12.0/13.0/14.0 Incorrect use of privileged API in UniversalCredentialManager prior to SMR Sep-2024 Release 1 allows local attackers to access privileged API related to UniversalCredentialManager. | 5.5 |
| 2024-08-07 | CVE-2024-34604 | Unspecified vulnerability in Samsung Android 12.0/13.0/14.0 Improper access control in LedCoverService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background. | 5.5 |
| 2024-08-07 | CVE-2024-34605 | Unspecified vulnerability in Samsung Android 12.0/13.0/14.0 Improper access control in SamsungHealthService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background. | 5.5 |