Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-04 | CVE-2024-34654 | Unspecified vulnerability in Samsung Android 13.0/14.0 Improper Export of android application component in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access files with My Files' privilege. | 5.5 |
| 2024-09-04 | CVE-2024-34655 | Unspecified vulnerability in Samsung Android 12.0/13.0/14.0 Incorrect use of privileged API in UniversalCredentialManager prior to SMR Sep-2024 Release 1 allows local attackers to access privileged API related to UniversalCredentialManager. | 5.5 |
| 2024-09-04 | CVE-2024-34656 | Path Traversal vulnerability in Samsung Notes Path traversal in Samsung Notes prior to version 4.4.21.62 allows local attackers to execute arbitrary code. | 7.8 |
| 2024-09-04 | CVE-2024-34657 | Out-of-bounds Write vulnerability in Samsung Notes Stack-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows remote attackers to execute arbitrary code. | 9.8 |
| 2024-09-04 | CVE-2024-34658 | Out-of-bounds Read vulnerability in Samsung Notes Out-of-bounds read in Samsung Notes allows local attackers to bypass ASLR. | 7.1 |
| 2024-09-04 | CVE-2024-34659 | Unspecified vulnerability in Samsung Group Sharing 10.8.03.2 Exposure of sensitive information in GroupSharing prior to version 13.6.13.3 allows remote attackers can force the victim to join the group. | 5.3 |
| 2024-09-04 | CVE-2024-34660 | Out-of-bounds Write vulnerability in Samsung Notes Heap-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows local attackers to execute arbitrary code. | 7.8 |
| 2024-09-04 | CVE-2024-34661 | Incorrect Default Permissions vulnerability in Samsung Assistant Improper handling of insufficient permissions in Samsung Assistant prior to version 9.1.00.7 allows remote attackers to access location data. | 4.3 |
| 2024-08-12 | CVE-2024-7399 | Path Traversal vulnerability in Samsung Magicinfo 9 Server Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9 Server version before 21.1050 allows attackers to write arbitrary file as system authority. | 7.5 |
| 2024-08-07 | CVE-2024-34604 | Unspecified vulnerability in Samsung Android 12.0/13.0/14.0 Improper access control in LedCoverService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background. | 5.5 |