|
194751
|
3.3 |
LOW
Local
|
samsung
|
members
|
Calling of non-existent provider in SMP sdk prior to version 3.0.9 allows unauthorized actions including denial of service attack by hijacking the provider.
|
CWE-287
Improper Authentication
|
CVE-2021-25342
|
2024-11-21 14:54 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194752
|
3.3 |
LOW
Local
|
samsung
|
s_assistant
|
Calling of non-existent provider in S Assistant prior to version 6.5.01.22 allows unauthorized actions including denial of service attack by hijacking the provider.
|
CWE-287
Improper Authentication
|
CVE-2021-25341
|
2024-11-21 14:54 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194753
|
2.4 |
LOW
Physics
|
google
|
android
|
Improper access control vulnerability in Samsung keyboard version prior to SMR Feb-2021 Release 1 allows physically proximate attackers to change in arbitrary settings during Initialization State.
|
NVD-CWE-Other
|
CVE-2021-25340
|
2024-11-21 14:54 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194754
|
5.2 |
MEDIUM
Physics
|
google
|
android
|
Improper address validation in HArx in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows an attacker, given a compromised kernel, to corrupt EL2 memory.
|
CWE-20
Improper Input Validation
|
CVE-2021-25339
|
2024-11-21 14:54 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194755
|
5.2 |
MEDIUM
Physics
|
google
|
android
|
Improper memory access control in RKP in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows an attacker, given a compromised kernel, to write certain part of RKP EL2 memory region.
|
NVD-CWE-Other
|
CVE-2021-25338
|
2024-11-21 14:54 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194756
|
7.1 |
HIGH
Local
|
google
|
android
|
Improper access control in clipboard service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to read or write certain local files.
|
NVD-CWE-Other
|
CVE-2021-25337
|
2024-11-21 14:54 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194757
|
3.3 |
LOW
Local
|
google
|
android
|
Improper access control in NotificationManagerService in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to acquire notification access via sending a crafted mali…
|
NVD-CWE-Other
|
CVE-2021-25336
|
2024-11-21 14:54 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194758
|
2.5 |
LOW
Local
|
google
samsung
|
android
one_ui
|
Improper lockscreen status check in cocktailbar service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows unauthenticated users to access hidden notification contents over the lockscre…
|
NVD-CWE-noinfo
|
CVE-2021-25335
|
2024-11-21 14:54 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194759
|
5.5 |
MEDIUM
Local
|
google
|
android
|
Improper input check in wallpaper service in Samsung mobile devices prior to SMR Feb-2021 Release 1 allows untrusted application to cause permanent denial of service.
|
CWE-20
Improper Input Validation
|
CVE-2021-25334
|
2024-11-21 14:54 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194760
|
2.4 |
LOW
Physics
|
samsung
|
pay_mini
|
Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen via scanning specific QR code.
|
CWE-200
Information Exposure
|
CVE-2021-25333
|
2024-11-21 14:54 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
