Vulnerabilities > Samsung

DATE CVE VULNERABILITY TITLE RISK
2023-05-04 CVE-2023-21485 Unspecified vulnerability in Samsung Android 11.0/12.0/13.0
Improper export of android application components vulnerability in VideoPreviewActivity in Call Settings to SMR May-2023 Release 1 allows physical attackers to access some media data stored in sandbox.
low complexity
samsung
4.6
2023-05-04 CVE-2023-21486 Unspecified vulnerability in Samsung Android 11.0/12.0/13.0
Improper export of android application components vulnerability in ImagePreviewActivity in Call Settings to SMR May-2023 Release 1 allows physical attackers to access some media data stored in sandbox.
low complexity
samsung
4.6
2023-05-04 CVE-2023-21487 Improper Authentication vulnerability in Samsung Android 11.0/12.0/13.0
Improper access control vulnerability in Telephony framework prior to SMR May-2023 Release 1 allows local attackers to change a call setting.
local
low complexity
samsung CWE-287
3.3
2023-05-04 CVE-2023-21488 Unspecified vulnerability in Samsung Android 11.0/12.0/13.0
Improper access control vulnerablility in Tips prior to SMR May-2023 Release 1 allows local attackers to launch arbitrary activity in Tips.
local
low complexity
samsung
7.8
2023-05-04 CVE-2023-21489 Out-of-bounds Write vulnerability in Samsung Android 11.0/12.0/13.0
Heap out-of-bounds write vulnerability in bootloader prior to SMR May-2023 Release 1 allows a physical attacker to execute arbitrary code.
low complexity
samsung CWE-787
6.8
2023-05-04 CVE-2023-21490 Unspecified vulnerability in Samsung Android 11.0/12.0/13.0
Improper access control in GearManagerStub prior to SMR May-2023 Release 1 allows a local attacker to delete applications installed by watchmanager.
local
low complexity
samsung
7.1
2023-05-04 CVE-2023-21491 Unspecified vulnerability in Samsung Android 12.0/13.0
Improper access control vulnerability in ThemeManager prior to SMR May-2023 Release 1 allows local attackers to write arbitrary files with system privilege.
local
low complexity
samsung
7.8
2023-05-04 CVE-2023-21492 Information Exposure Through Log Files vulnerability in Samsung Android 11.0/12.0/13.0
Kernel pointers are printed in the log file prior to SMR May-2023 Release 1 allows a privileged local attacker to bypass ASLR.
local
low complexity
samsung CWE-532
4.4
2023-05-04 CVE-2023-21493 Unspecified vulnerability in Samsung Android 11.0/12.0/13.0
Improper access control vulnerability in SemShareFileProvider prior to SMR May-2023 Release 1 allows local attackers to access protected data.
local
low complexity
samsung
5.5
2023-05-04 CVE-2023-21494 Classic Buffer Overflow vulnerability in Samsung Android 13.0
Potential buffer overflow vulnerability in auth api in mm_Authentication.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access.
network
low complexity
samsung CWE-120
critical
9.8