|
197621
|
9.8 |
CRITICAL
Network
|
linux
|
tizen
|
Improper access control vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows attackers to arbitrary code execution by replacing FOTA update file.
|
NVD-CWE-Other
|
CVE-2021-25437
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197622
|
9.8 |
CRITICAL
Network
|
linux
|
tizen
|
Improper input validation vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows arbitrary code execution via Samsung Accessory Protocol.
|
CWE-20
Improper Input Validation
|
CVE-2021-25436
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197623
|
9.8 |
CRITICAL
Network
|
linux
|
tizen
|
Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using recovery partition in wireless firmware download mode.
|
CWE-20
Improper Input Validation
|
CVE-2021-25435
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197624
|
9.8 |
CRITICAL
Network
|
linux
|
tizen
|
Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using param partition in wireless firmware download mode.
|
CWE-20
Improper Input Validation
|
CVE-2021-25434
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197625
|
5.5 |
MEDIUM
Local
|
linux
|
tizen
|
Improper authorization vulnerability in Tizen factory reset policy prior to Firmware update JUL-2021 Release allows untrusted applications to perform factory reset using dbus signal.
|
NVD-CWE-Other
|
CVE-2021-25433
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197626
|
3.3 |
LOW
Local
|
samsung
|
samsung_members
|
Information exposure vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.0) and above allows untrusted applications to access chat d…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2021-25432
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197627
|
5.5 |
MEDIUM
Local
|
samsung
|
cameralyzer
|
Improper access control vulnerability in Cameralyzer prior to versions 3.2.1041 in 3.2.x, 3.3.1040 in 3.3.x, and 3.4.4210 in 3.4.x allows untrusted applications to access some functions of Cameralyze…
|
NVD-CWE-Other
|
CVE-2021-25431
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197628
|
4.3 |
MEDIUM
Adjacent
|
google
|
android
|
Improper access control vulnerability in Bluetooth application prior to SMR July-2021 Release 1 allows untrusted application to access the Bluetooth information in Bluetooth application.
|
CWE-287
Improper Authentication
|
CVE-2021-25430
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197629
|
4.3 |
MEDIUM
Adjacent
|
google
|
android
|
Improper privilege management vulnerability in Bluetooth application prior to SMR July-2021 Release 1 allows untrusted application to access the Bluetooth information in Bluetooth application.
|
CWE-269
Improper Privilege Management
|
CVE-2021-25429
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197630
|
7.8 |
HIGH
Local
|
google
|
android
|
Improper validation check vulnerability in PackageManager prior to SMR July-2021 Release 1 allows untrusted applications to get dangerous level permission without user confirmation in limited circums…
|
CWE-20
CWE-269
Improper Input Validation
Improper Privilege Management
|
CVE-2021-25428
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
