Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samsung mobile vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2017-18020
On Samsung mobile devices with L(5.x), M(6.x), and N(7.x) software and Exynos chipsets, attackers can execute arbitrary code in the bootloader because S Boot omits a size check during a copy of ramfs data to memory. The Samsung ID is SVE-2017-10598.
Samsung Samsung Mobile 5.0
Samsung Samsung Mobile 7.1.1
Samsung Samsung Mobile 5.1.1
Samsung Samsung Mobile 6.0
Samsung Samsung Mobile 6.0.1
Samsung Samsung Mobile 7.0
Samsung Samsung Mobile 5.1
Samsung Samsung Mobile 7.1
Samsung Samsung Mobile 7.1.2
9.3
CVSSv2
CVE-2018-9141
On Samsung mobile devices with L(5.x), M(6.0), and N(7.x) software, Gallery allows remote malicious users to execute arbitrary code via a BMP file with a crafted resolution, aka SVE-2017-11105.
Samsung Samsung Mobile 5.0
Samsung Samsung Mobile 6.0
Samsung Samsung Mobile 7.0
Samsung Samsung Mobile 7.1
Samsung Samsung Mobile 7.1.1
Samsung Samsung Mobile 7.1.2
Samsung Samsung Mobile 5.1
5
CVSSv2
CVE-2017-7978
Samsung Android devices with L(5.0/5.1), M(6.0), and N(7.x) software allow malicious users to obtain sensitive information by reading a world-readable log file after an unexpected reboot. The Samsung ID is SVE-2017-8290.
Samsung Samsung Mobile 7.1
Samsung Samsung Mobile 7.1.1
Samsung Samsung Mobile 7.1.2
Samsung Samsung Mobile 6.0
Samsung Samsung Mobile 5.0
Samsung Samsung Mobile 7.0
Samsung Samsung Mobile 5.1
10
CVSSv2
CVE-2018-9143
On Samsung mobile devices with M(6.0) and N(7.x) software, a heap overflow in the sensorhub binder service leads to code execution in a privileged process, aka SVE-2017-10991.
Samsung Samsung Mobile 7.1
Samsung Samsung Mobile 7.1.1
Samsung Samsung Mobile 7.1.2
Samsung Samsung Mobile 6.0
Samsung Samsung Mobile 7.0
1 Github repository
5.4
CVSSv2
CVE-2018-10751
A malformed OMACP WAP push message can cause memory corruption on a Samsung S7 Edge device when processing the String Extension portion of the WbXml payload. This is due to an integer overflow in memory allocation for this string. The Samsung ID is SVE-2018-11463.
Samsung Samsung Mobile 7.0
Samsung Samsung Mobile 7.1
Samsung Samsung Mobile 7.1.1
Samsung Samsung Mobile 7.1.2
Samsung Samsung Mobile 6.0
1 EDB exploit
7.1
CVSSv2
CVE-2017-5217
Installing a zero-permission Android application on certain Samsung Android devices with KK(4.4), L(5.0/5.1), and M(6.0) software can continually crash the system_server process in the Android OS. The zero-permission app will create an active install session for a separate app th...
Samsung Samsung Mobile 5.0
Samsung Samsung Mobile 5.1
Samsung Samsung Mobile 6.0
Samsung Samsung Mobile 4.4
7.8
CVSSv2
CVE-2017-5351
Samsung Note devices with KK(4.4), L(5.0/5.1), and M(6.0) software allow malicious users to crash the system by creating an arbitrarily large number of active VR service threads. The Samsung ID is SVE-2016-7650.
Samsung Samsung Mobile 4.4
Samsung Samsung Mobile 5.0
Samsung Samsung Mobile 5.1
Samsung Samsung Mobile 6.0
10
CVSSv2
CVE-2016-9965
Lack of appropriate exception handling in some receivers of the Telecom application on Samsung Note devices with L(5.0/5.1), M(6.0), and N(7.0) software allows malicious users to crash the system easily resulting in a possible DoS attack, or possibly gain privileges. The Samsung ...
Samsung Samsung Mobile 5.0
Samsung Samsung Mobile 5.1
Samsung Samsung Mobile 7.0
Samsung Samsung Mobile 6.0
10
CVSSv2
CVE-2016-9966
Lack of appropriate exception handling in some receivers of the Telecom application on Samsung Note devices with L(5.0/5.1), M(6.0), and N(7.0) software allows malicious users to crash the system easily resulting in a possible DoS attack, or possibly gain privileges. The Samsung ...
Samsung Samsung Mobile 6.0
Samsung Samsung Mobile 7.0
Samsung Samsung Mobile 5.0
Samsung Samsung Mobile 5.1
9.3
CVSSv2
CVE-2018-5210
On Samsung mobile devices with N(7.x) software and Exynos chipsets, attackers can conduct a Trustlet stack overflow attack for arbitrary TEE code execution, in conjunction with a brute-force attack to discover unlock information (PIN, password, or pattern). The Samsung ID is SVE-...
Samsung Samsung Mobile 7.1.2
Samsung Samsung Mobile 7.0
Samsung Samsung Mobile 7.1.1
Samsung Samsung Mobile 7.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »