Vulnerabilities > Samsung > High

DATE CVE VULNERABILITY TITLE RISK
2024-11-06 CVE-2024-34676 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0/14.0
Out-of-bounds write in parsing subtitle file in libsubextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption.
local
low complexity
samsung CWE-787
7.3
7.3
2024-11-06 CVE-2024-34678 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0/14.0
Out-of-bounds write in libsapeextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption.
local
low complexity
samsung CWE-787
7.8
7.8
2024-11-06 CVE-2024-34679 Incorrect Default Permissions vulnerability in Samsung Android 14.0
Incorrect default permissions in Crane prior to SMR Nov-2024 Release 1 allows local attackers to access files with phone privilege.
local
low complexity
samsung CWE-276
7.1
7.1
2024-11-06 CVE-2024-49401 Unspecified vulnerability in Samsung Android 13.0/14.0
Improper input validation in Settings Suggestions prior to SMR Nov-2024 Release 1 allows local attackers to launch privileged activities.
local
low complexity
samsung
7.1
7.1
2024-10-08 CVE-2024-34662 Unspecified vulnerability in Samsung Android 12.0/13.0/14.0
Improper access control in ActivityManager prior to SMR Oct-2024 Release 1 in select Android 12, 13 and SMR Sep-2024 Release 1 in select Android 14 allows local attackers to execute privileged behaviors.
local
low complexity
samsung
7.8
7.8
2024-10-08 CVE-2024-34665 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0/14.0
Out-of-bounds write in parsing h.264 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege.
network
low complexity
samsung CWE-787
8.8
8.8
2024-10-08 CVE-2024-34666 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0/14.0
Out-of-bounds write in parsing h.264 format in a specific mode in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege.
network
low complexity
samsung CWE-787
8.8
8.8
2024-10-08 CVE-2024-34667 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0/14.0
Out-of-bounds write in parsing h.265 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege.
network
low complexity
samsung CWE-787
8.8
8.8
2024-10-08 CVE-2024-34668 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0/14.0
Out-of-bounds write in parsing h.263 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege.
network
low complexity
samsung CWE-787
8.8
8.8
2024-10-08 CVE-2024-34669 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0/14.0
Out-of-bounds write in parsing h.263+ format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege.
network
low complexity
samsung CWE-787
8.8
8.8