Vulnerabilities > Samsung

DATE CVE VULNERABILITY TITLE RISK
2024-07-02 CVE-2024-20889 Improper Authentication vulnerability in Samsung Android 12.0/13.0/14.0
Improper authentication in BLE prior to SMR Jul-2024 Release 1 allows adjacent attackers to pair with devices.
low complexity
samsung CWE-287
4.3
4.3
2024-07-02 CVE-2024-20890 Improper Authentication vulnerability in Samsung Android 12.0/13.0/14.0
Improper input validation in BLE prior to SMR Jul-2024 Release 1 allows adjacent attackers to trigger abnormal behavior.
low complexity
samsung CWE-287
8.8
8.8
2024-07-02 CVE-2024-20891 Unspecified vulnerability in Samsung Android 12.0/13.0/14.0
Improper access control in launchFullscreenIntent of SystemUI prior to SMR Jul-2024 Release 1 allows local attackers to launch privileged activities.
local
low complexity
samsung
7.8
7.8
2024-07-02 CVE-2024-20892 Improper Verification of Cryptographic Signature vulnerability in Samsung Android 12.0/13.0/14.0
Improper verification of signature in FilterProvider prior to SMR Jul-2024 Release 1 allows local attackers to execute privileged behaviors.
local
low complexity
samsung CWE-347
7.8
7.8
2024-07-02 CVE-2024-20893 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0/14.0
Improper input validation in libmediaextractorservice.so prior to SMR Jul-2024 Release 1 allows local attackers to trigger memory corruption.
local
low complexity
samsung CWE-787
7.8
7.8
2024-07-02 CVE-2024-20894 Improper Handling of Exceptional Conditions vulnerability in Samsung Android 12.0/13.0/14.0
Improper handling of exceptional conditions in Secure Folder prior to SMR Jul-2024 Release 1 allows physical attackers to bypass authentication under certain condition.
low complexity
samsung CWE-755
4.3
4.3
2024-07-02 CVE-2024-20895 Unspecified vulnerability in Samsung Android 12.0/13.0/14.0
Improper access control in Dar service prior to SMR Jul-2024 Release 1 allows local attackers to bypass restriction for calling SDP features.
local
low complexity
samsung
5.5
5.5
2024-07-02 CVE-2024-20896 Unspecified vulnerability in Samsung Android 12.0/13.0/14.0
Use of implicit intent for sensitive communication in Configuration message prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information.
local
low complexity
samsung
5.5
5.5
2024-07-02 CVE-2024-20897 Unspecified vulnerability in Samsung Android 12.0/13.0/14.0
Use of implicit intent for sensitive communication in FCM function in IMS service prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information.
local
low complexity
samsung
5.5
5.5
2024-07-02 CVE-2024-20898 Unspecified vulnerability in Samsung Android 12.0/13.0/14.0
Use of implicit intent for sensitive communication in SoftphoneClient in IMS service prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information.
local
low complexity
samsung
5.5
5.5