Vulnerabilities > Samsung

DATE CVE VULNERABILITY TITLE RISK
2021-03-04 CVE-2021-25331 Information Exposure vulnerability in Samsung PAY Mini
Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen in specific condition.
low complexity
samsung CWE-200
2.4
2020-10-12 CVE-2020-7811 Deserialization of Untrusted Data vulnerability in Samsung Update
Samsung Update 3.0.2.0 ~ 3.0.32.0 has a vulnerability that allows privilege escalation as commands crafted by attacker are executed while the engine deserializes the data received during inter-process communication
local
low complexity
samsung CWE-502
7.8
2020-08-31 CVE-2020-25054 Out-of-bounds Read vulnerability in Samsung Exynos
An issue was discovered on Samsung mobile devices with software through 2020-04-02 (Exynos modem chipsets).
network
low complexity
samsung CWE-125
critical
9.1
2020-04-07 CVE-2017-18681 Classic Buffer Overflow vulnerability in Samsung Galaxy S5 Firmware 20161220
An issue was discovered on Samsung Galaxy S5 mobile devices with software through 2016-12-20 (Qualcomm AP chipsets).
network
low complexity
samsung CWE-120
critical
9.8
2020-04-07 CVE-2016-11050 Unspecified vulnerability in Samsung products
An issue was discovered on Samsung mobile devices with S3(KK), Note2(KK), S4(L), Note3(L), and S5(L) software.
low complexity
samsung
4.3
2020-03-24 CVE-2019-20566 Out-of-bounds Write vulnerability in Samsung Exynos Smp1300
An issue was discovered on Samsung mobile devices with any (before September 2019 for SMP1300 Exynos modem chipsets) software.
network
low complexity
samsung CWE-787
critical
9.8
2020-03-24 CVE-2019-20564 Unspecified vulnerability in Samsung Note9 and S9
An issue was discovered on Samsung mobile devices with any (before October 2019 for S9 or Note9) software.
network
low complexity
samsung
7.5
2020-03-24 CVE-2020-10835 Classic Buffer Overflow vulnerability in Samsung Exynos
An issue was discovered on Samsung mobile devices with any (before February 2020 for Exynos modem chipsets) software.
network
low complexity
samsung CWE-120
critical
9.8
2020-03-10 CVE-2020-10255 Improper Input Validation vulnerability in multiple products
Modern DRAM chips (DDR4 and LPDDR4 after 2015) are affected by a vulnerability in deployment of internal mitigations against RowHammer attacks known as Target Row Refresh (TRR), aka the TRRespass issue.
network
high complexity
samsung micron skhynix CWE-20
critical
9.0
2020-02-12 CVE-2015-7890 Classic Buffer Overflow vulnerability in Samsung Galaxy S6 Edge Firmware
Multiple buffer overflows in the esa_write function in /dev/seirenin the Exynos Seiren Audio driver, as used in Samsung S6 Edge, allow local users to cause a denial of service (memory corruption) via a large (1) buffer or (2) size parameter.
local
low complexity
samsung CWE-120
5.5