|
221731
|
5.3 |
MEDIUM
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.x) software. Gallery leaks Private Mode thumbnails. The Samsung ID is SVE-2019-14208 (July 2019).
|
CWE-552
Files or Directories Accessible to External Parties
|
CVE-2019-20593
|
2024-11-21 13:38 |
2020-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221732
|
7.8 |
HIGH
Local
|
google
|
android
|
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) software. There is local SQL injection in the Story Video Editor Content Provider. The Samsung ID is SVE-2019-14062 (…
|
CWE-89
SQL Injection
|
CVE-2019-20592
|
2024-11-21 13:38 |
2020-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221733
|
7.8 |
HIGH
Local
|
google
|
android
|
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) software. There is local SQL injection in the Gear VR Service Content Provider. The Samsung ID is SVE-2019-14058 (Jul…
|
CWE-89
SQL Injection
|
CVE-2019-20591
|
2024-11-21 13:38 |
2020-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221734
|
9.8 |
CRITICAL
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with O(8.x) (Qualcomm chipsets) software. There is an integer underflow in the Secure Storage Trustlet. The Samsung ID is SVE-2019-13952 (July 2019).
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2019-20590
|
2024-11-21 13:38 |
2020-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221735
|
9.8 |
CRITICAL
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with P(9.0) software. The MemorySaver Content Provider allows SQL injection. The Samsung ID is SVE-2019-14365 (August 2019).
|
CWE-89
SQL Injection
|
CVE-2019-20576
|
2024-11-21 13:38 |
2020-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221736
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gf_odf_delete_descriptor in odf/desc_private.c that can cause a den…
|
CWE-763
Release of Invalid Pointer or Reference
|
CVE-2019-20632
|
2024-11-21 13:38 |
2020-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221737
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gf_list_count in utils/list.c that can cause a denial of service vi…
|
CWE-763
Release of Invalid Pointer or Reference
|
CVE-2019-20631
|
2024-11-21 13:38 |
2020-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221738
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in BS_ReadByte (called from gf_bs_read_bit) in utils/bitstream.c that c…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-20630
|
2024-11-21 13:38 |
2020-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221739
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial …
|
CWE-125
Out-of-bounds Read
|
CVE-2019-20629
|
2024-11-21 13:38 |
2020-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221740
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a Use-After-Free vulnerability in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial…
|
CWE-416
Use After Free
|
CVE-2019-20628
|
2024-11-21 13:38 |
2020-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
