Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-07 | CVE-2023-42536 | Out-of-bounds Write vulnerability in Samsung Android 11.0/12.0 An improper input validation in saped_dec in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write. | 7.8 |
| 2023-11-07 | CVE-2023-42537 | Out-of-bounds Write vulnerability in Samsung Android 11.0/12.0 An improper input validation in get_head_crc in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write. | 7.8 |
| 2023-11-07 | CVE-2023-42538 | Out-of-bounds Write vulnerability in Samsung Android 11.0/12.0 An improper input validation in saped_rec_silence in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write. | 7.8 |
| 2023-11-07 | CVE-2023-42539 | Unspecified vulnerability in Samsung Health PendingIntent hijacking vulnerability in ChallengeNotificationManager in Samsung Health prior to version 6.25 allows local attackers to access data. | 5.5 |
| 2023-11-07 | CVE-2023-42540 | Unspecified vulnerability in Samsung Account Improper access control vulnerability in Samsung Account prior to version 14.5.01.1 allows attackers to access sensitive information via implicit intent. | 5.5 |
| 2023-11-07 | CVE-2023-42541 | Incorrect Authorization vulnerability in Samsung Push Service Improper authorization in PushClientProvider of Samsung Push Service prior to version 3.4.10 allows attacker to access unique id. | 5.3 |
| 2023-11-07 | CVE-2023-42542 | Unspecified vulnerability in Samsung Push Service Improper access control vulnerability in Samsung Push Service prior to 3.4.10 allows local attackers to get register ID to identify the device. | 3.3 |
| 2023-11-07 | CVE-2023-42543 | Unspecified vulnerability in Samsung Bixby Voice 3.0.52.14/3.1.12 Improper verification of intent by broadcast receiver vulnerability in Bixby Voice prior to version 3.3.35.12 allows attackers to access arbitrary data with Bixby Voice privilege. | 7.5 |
| 2023-11-07 | CVE-2023-42544 | Unspecified vulnerability in Samsung Quick Share 13.1.2.4/3.5.14.18/3.5.16.20 Improper access control vulnerability in Quick Share prior to 13.5.52.0 allows local attacker to access local files. | 5.5 |
| 2023-11-07 | CVE-2023-42545 | Unspecified vulnerability in Samsung Phone 12.7.20.12 Use of implicit intent for sensitive communication vulnerability in Phone prior to versions 12.7.20.12 in Android 11, 13.1.48, 13.5.28 in Android 12, and 14.7.38 in Android 13 allows attackers to access location data. | 7.5 |