Vulnerabilities > Samsung > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-06 | CVE-2023-41268 | Out-of-bounds Write vulnerability in Samsung Escargot 3.0.0/4.0.0 Improper input validation vulnerability in Samsung Open Source Escargot allows stack overflow and segmentation fault. This issue affects Escargot: from 3.0.0 through 4.0.0. | 9.8 |
| 2023-12-05 | CVE-2023-42580 | Unspecified vulnerability in Samsung Galaxy Store 4.5.32.4/4.5.36.4/4.5.41.8 Improper URL validation from MCSLaunch deeplink in Galaxy Store prior to version 4.5.64.4 allows attackers to execute JavaScript API to install APK from Galaxy Store. | 9.8 |
| 2023-09-06 | CVE-2023-30723 | Unspecified vulnerability in Samsung Health 6.16/6.17/6.19.1.0001 Improper input validation vulnerability in Samsung Health prior to version 6.24.2.011 allows attackers to write arbitrary file with Samsung Health privilege. | 9.8 |
| 2023-08-10 | CVE-2023-30699 | Out-of-bounds Write vulnerability in Samsung Android 11.0/12.0 Out-of-bounds write vulnerability in parser_hvcC function of libsimba library prior to SMR Aug-2023 Release 1 allows code execution by remote attackers. | 9.8 |
| 2023-06-28 | CVE-2023-21517 | Out-of-bounds Write vulnerability in Samsung Exynos Heap out-of-bound write vulnerability in Exynos baseband prior to SMR Jun-2023 Release 1 allows remote attacker to execute arbitrary code. | 9.8 |
| 2023-06-07 | CVE-2023-31116 | Incorrect Default Permissions vulnerability in Samsung Exynos 5123 Firmware and Exynos 5300 Firmware An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. | 9.8 |
| 2023-06-07 | CVE-2023-31114 | Incorrect Resource Transfer Between Spheres vulnerability in Samsung Exynos 5123 Firmware and Exynos 5300 Firmware An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. | 9.1 |
| 2023-05-26 | CVE-2023-21516 | Cross-site Scripting vulnerability in Samsung Galaxy Store 4.5.32.4/4.5.36.4/4.5.41.8 XSS vulnerability from InstantPlay in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store. | 9.6 |
| 2023-05-04 | CVE-2023-21504 | Classic Buffer Overflow vulnerability in Samsung Android 11.0/12.0/13.0 Potential buffer overflow vulnerability in mm_Plmncoordination.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access. | 9.8 |
| 2023-05-04 | CVE-2023-21503 | Classic Buffer Overflow vulnerability in Samsung Android 13.0 Potential buffer overflow vulnerability in mm_LteInterRatManagement.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access. | 9.8 |