|
196121
|
6.5 |
MEDIUM
Network
|
google
|
android
|
Lack of boundary checking of a buffer in livfivextractor library prior to SMR Oct-2021 Release 1 allows OOB read.
|
CWE-125
Out-of-bounds Read
|
CVE-2021-25483
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196122
|
4.4 |
MEDIUM
Local
|
google
|
android
|
SQL injection vulnerabilities in CMFA framework prior to SMR Oct-2021 Release 1 allow untrusted application to overwrite some CMFA framework information.
|
CWE-89
SQL Injection
|
CVE-2021-25482
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196123
|
6.7 |
MEDIUM
Local
|
google
|
android
|
An improper error handling in Exynos CP booting driver prior to SMR Oct-2021 Release 1 allows local attackers to bypass a Secure Memory Protector of Exynos CP Memory.
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2021-25481
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196124
|
7.5 |
HIGH
Network
|
google
|
android
|
A lack of replay attack protection in GUTI REALLOCATION COMMAND message process in Qualcomm modem prior to SMR Oct-2021 Release 1 can lead to remote denial of service on mobile network connection.
|
CWE-294
Authentication Bypass by Capture-replay
|
CVE-2021-25480
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196125
|
7.2 |
HIGH
Network
|
google
|
android
|
A possible heap-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-25479
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196126
|
7.2 |
HIGH
Network
|
google
|
android
|
A possible stack-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-25478
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196127
|
4.9 |
MEDIUM
Network
|
google
|
android
|
An improper error handling in Mediatek RRC Protocol stack prior to SMR Oct-2021 Release 1 allows modem crash and remote denial of service.
|
CWE-415
Double Free
|
CVE-2021-25477
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196128
|
4.4 |
MEDIUM
Local
|
google
|
android
|
An information disclosure vulnerability in Widevine TA log prior to SMR Oct-2021 Release 1 allows attackers to bypass the ASLR protection mechanism in TEE.
|
NVD-CWE-noinfo
|
CVE-2021-25476
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196129
|
6.7 |
MEDIUM
Local
|
google
|
android
|
A possible heap-based buffer overflow vulnerability in DSP kernel driver prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-25475
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196130
|
4.4 |
MEDIUM
Local
|
google
|
android
|
Assuming a shell privilege is gained, an improper exception handling for multi_sim_bar_show_on_qspanel value in SystemUI prior to SMR Oct-2021 Release 1 allows an attacker to cause a permanent denial…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2021-25474
|
2024-11-21 14:55 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
