Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-04 | CVE-2023-21497 | Use of Externally-Controlled Format String vulnerability in Samsung Android 13.0 Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to access the memory address. | 7.8 |
| 2023-05-04 | CVE-2023-21498 | Improper Input Validation vulnerability in Samsung Android 13.0 Improper input validation vulnerability in setPartnerTAInfo in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to overwrite the trustlet memory. | 7.8 |
| 2023-05-04 | CVE-2023-21499 | Out-of-bounds Write vulnerability in Samsung Android 13.0 Out-of-bounds write vulnerability in TA_Communication_mpos_encrypt_pin in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code. | 7.8 |
| 2023-05-04 | CVE-2023-21500 | Double Free vulnerability in Samsung Android 13.0 Double free validation vulnerability in setPinPadImages in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to access the trustlet memory. | 5.5 |
| 2023-05-04 | CVE-2023-21501 | Improper Input Validation vulnerability in Samsung Android 13.0 Improper input validation vulnerability in mPOS fiserve trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code. | 7.8 |
| 2023-05-04 | CVE-2023-21502 | Improper Input Validation vulnerability in Samsung Android 12.0/13.0 Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands. | 7.8 |
| 2023-05-04 | CVE-2023-21503 | Classic Buffer Overflow vulnerability in Samsung Android 13.0 Potential buffer overflow vulnerability in mm_LteInterRatManagement.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access. | 9.8 |
| 2023-05-04 | CVE-2023-21504 | Classic Buffer Overflow vulnerability in Samsung Android 11.0/12.0/13.0 Potential buffer overflow vulnerability in mm_Plmncoordination.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access. | 9.8 |
| 2023-05-04 | CVE-2023-21505 | Unspecified vulnerability in Samsung Core Services Improper access control in Samsung Core Service prior to version 2.1.00.36 allows attacker to write arbitrary file in sandbox. | 8.6 |
| 2023-05-04 | CVE-2023-21506 | Out-of-bounds Write vulnerability in Samsung Blockchain Keystore Out-of-bounds Write vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA_ARRAY command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code. | 7.8 |