Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-22 | CVE-2018-16269 | Information Exposure vulnerability in Samsung products The wnoti system service in Samsung Galaxy Gear series allows an unprivileged process to take over the internal notification message data, due to improper D-Bus security policy configurations. | 7.5 |
| 2020-01-09 | CVE-2012-3810 | Unspecified vulnerability in Samsung Kies 2.3.2.12074/2.3.2.120741313 Samsung Kies before 2.5.0.12094_27_11 has registry modification. | 7.5 |
| 2020-01-09 | CVE-2012-3809 | Unspecified vulnerability in Samsung Kies 2.3.2.12074/2.3.2.120741313 Samsung Kies before 2.5.0.12094_27_11 has arbitrary directory modification. | 7.5 |
| 2020-01-09 | CVE-2012-3808 | Unspecified vulnerability in Samsung Kies 2.3.2.12074/2.3.2.120741313 Samsung Kies before 2.5.0.12094_27_11 has arbitrary file modification. | 7.5 |
| 2020-01-09 | CVE-2012-3807 | Unspecified vulnerability in Samsung Kies 2.3.2.12074/2.3.2.120741313 Samsung Kies before 2.5.0.12094_27_11 has arbitrary file execution. | 9.8 |
| 2020-01-09 | CVE-2012-3806 | NULL Pointer Dereference vulnerability in Samsung Kies 2.3.2.12074/2.3.2.120741313 Samsung Kies before 2.5.0.12094_27_11 contains a NULL pointer dereference vulnerability which could allow remote attackers to perform a denial of service. | 7.5 |
| 2019-12-27 | CVE-2013-4764 | Incorrect Default Permissions vulnerability in Samsung Galaxy S3 Firmware and Galaxy S4 Firmware Samsung Galaxy S3/S4 exposes an unprotected component allowing an unprivileged app to send arbitrary SMS texts to arbitrary destinations without permission. | 4.3 |
| 2019-12-27 | CVE-2013-4763 | Incorrect Default Permissions vulnerability in Samsung Galaxy S3 Firmware and Galaxy S4 Firmware Samsung Galaxy S3/S4 exposes an unprotected component allowing arbitrary SMS text messages without requesting permission. | 4.6 |
| 2019-12-09 | CVE-2015-7892 | Out-of-bounds Write vulnerability in Samsung M2M1Shot Driver Stack-based buffer overflow in the m2m1shot_compat_ioctl32 function in the Samsung m2m1shot driver framework, as used in Samsung S6 Edge, allows local users to have unspecified impact via a large data.buf_out.num_planes value in an ioctl call. | 7.8 |
| 2019-11-14 | CVE-2019-15465 | Unspecified vulnerability in Samsung Galaxy J7 PRO Firmware The Samsung J7 Pro Android device with a build fingerprint of samsung/j7y17lteubm/j7y17lte:8.1.0/M1AJQ/J730GMUBS6BSC1:user/release-keys contains a pre-installed app with a package name of com.samsung.android.themecenter app (versionCode=7000100, versionName=7.0.1.0) that allows other pre-installed apps to perform app installation via an accessible app component. | 7.8 |