Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samsung samsung mobile 4.4 vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2015-9546
An issue exists on Samsung mobile devices with KK(4.4) and later software through 2015-06-16. In some cases, HTTP is used for an Inputmethod, rather than HTTPS. A man-in-the-middle attacker can modify the client-server data stream to insert directory traversal sequences into an e...
Google Android 4.4
9.8
CVSSv3
CVE-2015-5524
An issue exists on Samsung mobile devices with KK(4.4) and later software through 2015-05-13. There is a buffer overflow in datablock_write because the amount of received data is not validated. The Samsung ID is SVE-2015-4018 (December 2015).
Google Android 4.4
9.1
CVSSv3
CVE-2017-18648
An issue exists on Samsung mobile devices with KK(4.4.x), L(5.x), M(6.x), and N(7.x) software. Arbitrary file read/write operations can occur in the locked state via a crafted MTP command. The Samsung ID is SVE-2017-10086 (November 2017).
Google Android 7.1.0
Google Android 7.1.2
Google Android 5.1.0
Google Android 5.0.2
Google Android 6.0.1
Google Android 6.0
Google Android 4.4.3
Google Android 4.4.4
Google Android 7.0
Google Android 5.0.1
Google Android 5.0
Google Android 4.4
Google Android 4.4.1
Google Android 5.1.1
Google Android 4.4.2
Google Android 7.1.1
Google Android 5.1
7.5
CVSSv3
CVE-2017-18666
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.x) software. Applications can send arbitrary premium SMS messages. The Samsung ID is SVE-2017-8701 (June 2017).
Google Android 7.1.0
Google Android 7.1.2
Google Android 6.0
Google Android 7.0
Google Android 5.0
Google Android 4.4
Google Android 7.1.1
Google Android 5.1
4.3
CVSSv3
CVE-2017-18667
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.x) software. Attackers can prevent users from learning that SMS storage space has been exhausted. The Samsung ID is SVE-2017-8702 (June 2017).
Google Android 7.1.0
Google Android 7.1.2
Google Android 6.0
Google Android 7.0
Google Android 5.0
Google Android 4.4
Google Android 7.1.1
Google Android 5.1
7.5
CVSSv3
CVE-2017-18685
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. The InputMethod application can cause a system crash via a malformed serializable object in an Intent. The Samsung ID is SVE-2016-7123 (February 2017).
Google Android 6.0
Google Android 5.0
Google Android 4.4
Google Android 5.1
5.3
CVSSv3
CVE-2017-18687
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) software. An attacker can obtain the full pathnames of sdcard files by reading the system protected log upon reception of a certain intent. The Samsung ID is SVE-2016-7183 (January 2017).
Google Android 6.0
Google Android 7.0
Google Android 5.0
Google Android 4.4
Google Android 5.1
7.5
CVSSv3
CVE-2017-18664
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. There is a NULL pointer exception in PersonManager, causing memory corruption. The Samsung ID is SVE-2017-8286 (June 2017).
Google Android 6.0
Google Android 5.0
Google Android 4.4
Google Android 5.1
7.5
CVSSv3
CVE-2017-18670
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. android.intent.action.SIOP_LEVEL_CHANGED allows a serializable intent reboot. The Samsung ID is SVE-2017-8363 (May 2017).
Google Android 6.0
Google Android 5.0
Google Android 4.4
Google Android 5.1
7.5
CVSSv3
CVE-2017-18682
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) software. Because of incorrect exception handling and an unprotected intent, AudioService can cause a system crash, The Samsung IDs are SVE-2017-8114, SVE-2017-8116, and SVE-2017-8117 (March 20...
Google Android 6.0
Google Android 7.0
Google Android 5.0
Google Android 4.4
Google Android 5.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »