Vulnerabilities > Samsung

DATE CVE VULNERABILITY TITLE RISK
2021-10-06 CVE-2021-25494 Classic Buffer Overflow vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27
A possible buffer overflow vulnerability in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows arbitrary code execution.
local
low complexity
samsung CWE-120
7.8
2021-10-06 CVE-2021-25495 Out-of-bounds Write vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27
A possible heap buffer overflow vulnerability in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows arbitrary code execution.
local
low complexity
samsung CWE-787
7.8
2021-10-06 CVE-2021-25496 Classic Buffer Overflow vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27
A possible buffer overflow vulnerability in maetd_dec_slice of libSPenBase library of Samsung Notes prior to Samsung Notes version 4.3.02.61 allows arbitrary code execution.
local
low complexity
samsung CWE-120
7.8
2021-10-06 CVE-2021-25497 Classic Buffer Overflow vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27
A possible buffer overflow vulnerability in maetd_cpy_slice of libSPenBase library of Samsung Notes prior to Samsung Notes version 4.3.02.61 allows arbitrary code execution.
local
low complexity
samsung CWE-120
7.8
2021-10-06 CVE-2021-25498 Classic Buffer Overflow vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27
A possible buffer overflow vulnerability in maetd_eco_cb_mode of libSPenBase library of Samsung Notes prior to Samsung Notes version 4.3.02.61 allows arbitrary code execution.
local
low complexity
samsung CWE-120
7.8
2021-10-06 CVE-2021-25499 Unspecified vulnerability in Samsung Galaxy Store
Intent redirection vulnerability in SamsungAccountSDKSigninActivity of Galaxy Store prior to version 4.5.32.4 allows attacker to access content provider of Galaxy Store.
local
low complexity
samsung
5.5
2021-09-09 CVE-2021-25463 Unspecified vulnerability in Samsung Penup
Improper access control vulnerability in PENUP prior to version 3.8.00.18 allows arbitrary webpage loading in webview.
local
low complexity
samsung
3.3
2021-09-09 CVE-2021-25464 Unspecified vulnerability in Samsung Capture
An improper file management vulnerability in SamsungCapture prior to version 4.8.02 allows sensitive information leak.
local
low complexity
samsung
5.5
2021-09-09 CVE-2021-25465 Improper Input Validation vulnerability in Samsung Themes
An improper scheme check vulnerability in Samsung Themes prior to version 5.2.01 allows attackers to perform Man-in-the-middle attack.
local
high complexity
samsung CWE-20
7.0
2021-09-09 CVE-2021-25466 Improper Authentication vulnerability in Samsung Internet
Improper scheme check vulnerability in Samsung Internet prior to version 15.0.2.47 allows attackers to perform Man-in-the-middle attack and obtain Samsung Account token.
network
high complexity
samsung CWE-287
5.9