Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Samsung Subscribe
Total 1158 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-42548 1 Samsung 1 Account 2024-11-21 N/A 5.5 MEDIUM
Use of implicit intent for sensitive communication vulnerability in startMandatoryCheckActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.
CVE-2023-42547 1 Samsung 1 Account 2024-11-21 N/A 5.5 MEDIUM
Use of implicit intent for sensitive communication vulnerability in startEmailValidationActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.
CVE-2023-42546 1 Samsung 1 Account 2024-11-21 N/A 5.5 MEDIUM
Use of implicit intent for sensitive communication vulnerability in startAgreeToDisclaimerActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.
CVE-2023-42545 1 Samsung 2 Android, Phone 2024-11-21 N/A 5.5 MEDIUM
Use of implicit intent for sensitive communication vulnerability in Phone prior to versions 12.7.20.12 in Android 11, 13.1.48, 13.5.28 in Android 12, and 14.7.38 in Android 13 allows attackers to access location data.
CVE-2023-42544 1 Samsung 1 Quick Share 2024-11-21 N/A 5.5 MEDIUM
Improper access control vulnerability in Quick Share prior to 13.5.52.0 allows local attacker to access local files.
CVE-2023-42543 1 Samsung 1 Bixby Voice 2024-11-21 N/A 6.2 MEDIUM
Improper verification of intent by broadcast receiver vulnerability in Bixby Voice prior to version 3.3.35.12 allows attackers to access arbitrary data with Bixby Voice privilege.
CVE-2023-42539 1 Samsung 1 Health 2024-11-21 N/A 4.7 MEDIUM
PendingIntent hijacking vulnerability in ChallengeNotificationManager in Samsung Health prior to version 6.25 allows local attackers to access data.
CVE-2023-42538 1 Samsung 1 Android 2024-11-21 N/A 5.9 MEDIUM
An improper input validation in saped_rec_silence in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write.
CVE-2023-42537 1 Samsung 1 Android 2024-11-21 N/A 8.4 HIGH
An improper input validation in get_head_crc in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write.
CVE-2023-42536 1 Samsung 1 Android 2024-11-21 N/A 8.4 HIGH
An improper input validation in saped_dec in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read and write.
CVE-2023-42535 1 Samsung 1 Android 2024-11-21 N/A 8.4 HIGH
Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-42534 1 Samsung 1 Android 2024-11-21 N/A 6.3 MEDIUM
Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arbitrary files with system privilege.
CVE-2023-42533 1 Samsung 1 Android 2024-11-21 N/A 6.6 MEDIUM
Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel.
CVE-2023-42532 1 Samsung 1 Android 2024-11-21 N/A 5.9 MEDIUM
Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote attacker to intercept the network traffic including Firmware information.
CVE-2023-42531 1 Samsung 1 Android 2024-11-21 N/A 6.2 MEDIUM
Improper access control vulnerability in SmsController prior to SMR Nov-2023 Release1 allows local attackers to bypass restrictions on starting activities from the background.
CVE-2023-42530 1 Samsung 1 Android 2024-11-21 N/A 6.7 MEDIUM
Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows attackers to enable Wi-Fi and Wi-Fi Direct without User Interaction.
CVE-2023-42529 1 Samsung 1 Android 2024-11-21 N/A 6.7 MEDIUM
Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to execute arbitrary code.
CVE-2023-42528 1 Samsung 1 Android 2024-11-21 N/A 6.7 MEDIUM
Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-42527 1 Samsung 1 Android 2024-11-21 N/A 5.6 MEDIUM
Improper input validation vulnerability in ProcessWriteFile of libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to expose sensitive information.
CVE-2023-42483 1 Samsung 14 Exynos 1080, Exynos 1080 Firmware, Exynos 1280 and 11 more 2024-11-21 N/A 6.3 MEDIUM
A TOCTOU race condition in Samsung Mobile Processor Exynos 9820, Exynos 980, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, and Exynos 1380 can cause unexpected termination of a system.