|
210201
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) (Exynos 7885 chipsets) software. The Bluetooth Low Energy (BLE) component has a buffer overflow with a resultant deadlock or …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2020-15582
|
2024-11-21 14:05 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210202
|
5.3 |
MEDIUM
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. The kernel logging feature allows attackers to discover virtual addresses via vectors involving shared mem…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2020-15581
|
2024-11-21 14:05 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210203
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. Attackers can bypass Factory Reset Protection (FRP) by enrolling a new lock password. The Samsung ID is SV…
|
NVD-CWE-noinfo
|
CVE-2020-15580
|
2024-11-21 14:05 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210204
|
7.5 |
HIGH
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. Attackers can bypass Factory Reset Protection (FRP) via the KNOX API. The Samsung ID is SVE-2020-17318 (Ju…
|
NVD-CWE-noinfo
|
CVE-2020-15579
|
2024-11-21 14:05 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210205
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An issue was discovered on Samsung mobile devices with O(8.x) software. FactoryCamera does not properly restrict runtime permissions. The Samsung ID is SVE-2020-17270 (July 2020).
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-15578
|
2024-11-21 14:05 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210206
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. Cameralyzer allows attackers to write files to the SD card. The Samsung ID is SVE-2020-16830 (July 2020).
|
NVD-CWE-noinfo
|
CVE-2020-15577
|
2024-11-21 14:05 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210207
|
7.5 |
HIGH
Network
|
solarwinds
|
serv-u
|
SolarWinds Serv-U File Server before 15.2.1 allows information disclosure via an HTTP response.
|
NVD-CWE-noinfo
|
CVE-2020-15576
|
2024-11-21 14:05 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210208
|
6.1 |
MEDIUM
Network
|
solarwinds
|
serv-u
|
SolarWinds Serv-U File Server before 15.2.1 allows XSS as demonstrated by Tenable Scan, aka Case Number 00484194.
|
CWE-79
Cross-site Scripting
|
CVE-2020-15575
|
2024-11-21 14:05 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210209
|
7.5 |
HIGH
Network
|
solarwinds
|
serv-u
|
SolarWinds Serv-U File Server before 15.2.1 mishandles the Same-Site cookie attribute, aka Case Number 00331893.
|
NVD-CWE-noinfo
|
CVE-2020-15574
|
2024-11-21 14:05 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210210
|
6.1 |
MEDIUM
Network
|
solarwinds
|
serv-u
|
SolarWinds Serv-U File Server before 15.2.1 has a "Cross-script vulnerability," aka Case Numbers 00041778 and 00306421.
|
CWE-79
Cross-site Scripting
|
CVE-2020-15573
|
2024-11-21 14:05 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
