Vulnerabilities > Samsung > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-07 | CVE-2024-20865 | Unspecified vulnerability in Samsung Android 12.0/13.0 Authentication bypass in bootloader prior to SMR May-2024 Release 1 allows physical attackers to flash arbitrary images. low complexity samsung | 6.8 |
| 2024-05-07 | CVE-2024-20866 | Unspecified vulnerability in Samsung Android 12.0/13.0 Authentication bypass vulnerability in Setupwizard prior to SMR May-2024 Release 1 allows physical attackers to skip activation step. low complexity samsung | 6.6 |
| 2024-04-02 | CVE-2024-20842 | Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0 Improper Input Validation vulnerability in handling apdu of libsec-ril prior to SMR Apr-2024 Release 1 allows local privileged attackers to write out-of-bounds memory. | 6.7 |
| 2024-04-02 | CVE-2024-20843 | Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0 Out-of-bound write vulnerability in command parsing implementation of libIfaaCa prior to SMR Apr-2024 Release 1 allows local privileged attackers to execute arbitrary code. | 6.7 |
| 2024-03-05 | CVE-2024-20833 | Use After Free vulnerability in Samsung Android 11.0/12.0 Use after free vulnerability in pub_crypto_recv_msg prior to SMR Mar-2024 Release 1 due to race condition allows local attackers with system privilege to cause memory corruption. | 6.4 |
| 2024-03-05 | CVE-2024-20829 | Unspecified vulnerability in Samsung Internet 24.0 Missing proper interaction for opening deeplink in Samsung Internet prior to version v24.0.0.0 allows remote attackers to open an application without proper interaction. | 5.3 |
| 2024-03-05 | CVE-2024-20830 | Incorrect Default Permissions vulnerability in Samsung Android 11.0/12.0 Incorrect default permission in AppLock prior to SMR MAr-2024 Release 1 allows local attackers to configure AppLock settings. | 5.3 |
| 2024-03-05 | CVE-2024-20831 | Out-of-bounds Write vulnerability in Samsung Android 11.0/12.0 Stack overflow in Little Kernel in bootloader prior to SMR Mar-2024 Release 1 allows local privileged attackers to execute arbitrary code. | 6.7 |
| 2024-03-05 | CVE-2024-20832 | Out-of-bounds Write vulnerability in Samsung Android 11.0/12.0 Heap overflow in Little Kernel in bootloader prior to SMR Mar-2024 Release 1 allows local privileged attackers to execute arbitrary code. | 6.7 |
| 2024-03-05 | CVE-2024-20836 | Out-of-bounds Read vulnerability in Samsung Android 11.0/12.0 Out of bounds Read vulnerability in ssmis_get_frm in libsubextractor.so prior to SMR Mar-2024 Release 1 allows local attackers to read out of bounds memory. | 5.5 |