High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-03-21	CVE-2018-14745	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Samsung Galaxy S6 Firmware G920Fxxu5Eqh7 Buffer overflow in prot_get_ring_space in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker (who has obtained code execution on the Wi-Fi chip) to overwrite kernel memory due to improper validation of the ring buffer read pointer. low complexity samsung CWE-119	8.8
2018-09-24	CVE-2018-14318	Improper Input Validation vulnerability in Samsung Galaxy S8 Firmware G950Fxxu1Aql5 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung Galaxy S8 G950FXXU1AQL5. network low complexity samsung CWE-20	8.8
2018-09-24	CVE-2018-11614	Unspecified vulnerability in Samsung Members This vulnerability allows remote attackers to escalate privileges on vulnerable installations of Samsung Members Fixed in version 2.4.25. network low complexity samsung	8.8
2018-09-24	CVE-2018-10502	Improper Input Validation vulnerability in Samsung Galaxy Apps This vulnerability allows local attackers to escalate privileges on vulnerable installations of Samsung Galaxy Apps Fixed in version 4.2.18.2. local low complexity samsung CWE-20	7.8
2018-09-24	CVE-2018-10501	Path Traversal vulnerability in Samsung Notes This vulnerability allows local attackers to escalate privileges on vulnerable installations of Samsung Notes Fixed in version 2.0.02.31. local high complexity samsung CWE-22	7.0
2018-09-24	CVE-2018-10500	Unspecified vulnerability in Samsung Galaxy Apps This vulnerability allows local attackers to escalate privileges on vulnerable installations of Samsung Galaxy Apps Fixed in version 6.4.0.15. local high complexity samsung	7.0
2018-09-24	CVE-2018-10499	Improper Input Validation vulnerability in Samsung Galaxy Apps This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Samsung Galaxy Apps Fixed in version 6.4.0.15. local high complexity samsung CWE-20	7.0
2018-09-24	CVE-2018-10497	Improper Input Validation vulnerability in Samsung Email This vulnerability allows local attackers to escalate privileges on vulnerable installations of Samsung Email Fixed in version 5.0.02.16. local low complexity samsung CWE-20	7.8
2018-09-24	CVE-2018-10496	Improper Input Validation vulnerability in Samsung Internet Browser This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung Internet Browser Fixed in version 6.4.0.15. network low complexity samsung CWE-20	8.8
2018-09-21	CVE-2018-3915	Out-of-bounds Write vulnerability in Samsung Sth-Eth-250 Firmware 0.20.17 An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. local low complexity samsung CWE-787	8.2