Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

samsung knox vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2016-3996
ClipboardDataMgr in Samsung KNOX 1.0.0 and 2.3.0 does not properly check the caller, which allows local users to read KNOX clipboard data via a crafted application.
Samsung Knox 2.3.0Samsung Knox 1.0
4.3
CVSSv2
CVE-2017-10963
In Knox SDS IAM (Identity Access Management) and EMM (Enterprise Mobility Management) 16.11 on Samsung mobile devices, a man-in-the-middle attacker can install any application into the Knox container (without the user's knowledge) by inspecting network traffic from a Samsung...
Samsung Knox Enterprise Mobility Management 16.11Samsung Knox Identity Access Management 16.11
1.9
CVSSv2
CVE-2016-1919
Samsung KNOX 1.0 uses a weak eCryptFS Key generation algorithm, which makes it easier for local users to obtain sensitive information by leveraging knowledge of the TIMA key and a brute-force attack.
Samsung Knox
4.3
CVSSv2
CVE-2016-1920
Samsung KNOX 1.0.0 uses the shared certificate on Android, which allows local users to conduct man-in-the-middle attacks as demonstrated by installing a certificate and running a VPN service.
Samsung Knox 1.0
2.1
CVSSv2
CVE-2019-6744
This vulnerability allows local malicious users to disclose sensitive information on affected installations of Samsung Knox 1.2.02.39 on Samsung Galaxy S9 build G9600ZHS3ARL1 Secure Folder. An attacker must first obtain physical access to the device in order to exploit this vulne...
Samsung Knox 1.2.02.39
5
CVSSv2
CVE-2021-25442
Improper MDM policy management vulnerability in KME module prior to KCS version 1.39 allows MDM users to bypass Knox Manage authentication.
Samsung Knox Cloud Services
NA
CVE-2023-42559
Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time.
Samsung Android 14.0Samsung Android
NA
CVE-2023-30710
Improper input validation vulnerability in Knox AI prior to SMR Sep-2023 Release 1 allows local malicious users to launch privileged activities.
Samsung Android 11.0Samsung Android 12.0Samsung Android 13.0
NA
CVE-2023-21495
Improper access control vulnerability in Knox Enrollment Service prior to SMR May-2023 Release 1 allow attacker install KSP app when device admin is set.
Samsung Android 11.0Samsung Android 12.0Samsung Android 13.0
NA
CVE-2023-21512
Improper Knox ID validation logic in notification framework prior to SMR Jun-2023 Release 1 allows local malicious users to read work profile notifications without proper access permission.
Samsung Android 11.0Samsung Android 12.0Samsung Android 13.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmwareCVE-2023-52866CVE-2024-4367CVE-2024-1721CVE-2023-34992XML injectionCVE-2023-52817SQLCVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook