Vulnerabilities > Samsung > Galaxy S4 Firmware > Low

DATE CVE VULNERABILITY TITLE RISK
2019-12-27 CVE-2013-4763 Incorrect Default Permissions vulnerability in Samsung Galaxy S3 Firmware and Galaxy S4 Firmware
Samsung Galaxy S3/S4 exposes an unprotected component allowing arbitrary SMS text messages without requesting permission.
local
low complexity
samsung CWE-276
2.1
2019-12-27 CVE-2013-4764 Incorrect Default Permissions vulnerability in Samsung Galaxy S3 Firmware and Galaxy S4 Firmware
Samsung Galaxy S3/S4 exposes an unprotected component allowing an unprivileged app to send arbitrary SMS texts to arbitrary destinations without permission.
local
low complexity
samsung CWE-276
2.1
2017-04-13 CVE-2016-4032 Improper Access Control vulnerability in Samsung products
Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3), GT-I9192 build I9192XXUBNB1 (Galaxy S4 mini), GT-I9195 build I9195XXUCOL1 (Galaxy S4 mini LTE), and GT-I9505 build I9505XXUHOJ2 (Galaxy S4) devices do not block AT+USBDEBUG and AT+WIFIVALUE, which allows attackers to modify Android settings by leveraging AT access, aka SVE-2016-5301.
local
low complexity
samsung CWE-284
2.1