Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samsung vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-30738
An improper input validation in UEFI Firmware prior to Firmware update Oct-2023 Release in Galaxy Book, Galaxy Book Pro, Galaxy Book Pro 360 and Galaxy Book Odyssey allows local malicious user to execute SMM memory corruption.
Samsung Galaxy Book Firmware
Samsung Galaxy Book Pro Firmware
Samsung Galaxy Book Pro 360 Firmware
Samsung Galaxy Book Odyssey Firmware
NA
CVE-2023-37377
An issue exists in Samsung Exynos Mobile Processor and Wearable Processor (Exynos 980, Exynos 850, Exynos 2100, and Exynos W920). Improper handling of length parameter inconsistency can cause incorrect packet filtering.
Samsung Exynos 980 Firmware -
Samsung Exynos 850 Firmware -
Samsung Exynos 2100 Firmware -
Samsung Exynos W920 Firmware -
NA
CVE-2023-29092
An issue exists in Exynos Mobile Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, and Exynos 1080. Binding of a wrong resource can occur due to improper handling of parameters while binding a network interface.
Samsung Exynos 5123 Firmware -
Samsung Exynos 5300 Firmware -
Samsung Exynos 980 Firmware -
Samsung Exynos 1080 Firmware -
4.4
CVSSv2
CVE-2015-7891
Race condition in the ioctl implementation in the Samsung Graphics 2D driver (aka /dev/fimg2d) in Samsung devices with Android L(5.0/5.1) allows local users to trigger memory errors by leveraging definition of g2d_lock and g2d_unlock lock macros as no-ops, aka SVE-2015-4598.
Samsung Samsung Mobile 5.1
Samsung Samsung Mobile 5.0
1 EDB exploit
9.3
CVSSv2
CVE-2017-14262
On Samsung NVR devices, remote attackers can read the MD5 password hash of the 'admin' account via certain szUserName JSON data to cgi-bin/main-cgi, and login to the device with that hash in the szUserPasswd parameter.
Samsung Srn 1670d Firmware -
Samsung Srn 1000 Firmware -
Samsung Srn 472s Firmware -
Samsung Srn 470d Firmware -
1 Github repository
10
CVSSv2
CVE-2017-5538
The kbase_dispatch function in arm/t7xx/r5p0/mali_kbase_core_linux.c in the GPU driver on Samsung devices with M(6.0) and N(7.0) software and Exynos AP chipsets allows malicious users to have unspecified impact via unknown vectors, which trigger an out-of-bounds read, aka SVE-201...
Samsung Samsung Mobile 6.0
Samsung Samsung Mobile 7.0
4.6
CVSSv2
CVE-2016-4030
Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3), GT-I9192 build I9192XXUBNB1 (Galaxy S4 mini), GT-I9195 build I9195XXUCOL1 (Galaxy S4 mini LTE), and GT-I9505 build I9505XXUHOJ2 (Galaxy S4) devices have unintended availability of the ...
Samsung Galaxy S6 Firmware G920fxxu2coh2
Samsung Galaxy Note 3 Firmware N9005xxugbob6
Samsung Galaxy S4 Mini Firmware I9192xxubnb1
Samsung Galaxy S4 Mini Lte Firmware I9195xxucol1
Samsung Galaxy S4 Firmware I9505xxuhoj2
3 Github repositories
4.6
CVSSv2
CVE-2016-4031
Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3), GT-I9192 build I9192XXUBNB1 (Galaxy S4 mini), GT-I9195 build I9195XXUCOL1 (Galaxy S4 mini LTE), and GT-I9505 build I9505XXUHOJ2 (Galaxy S4) devices allow malicious users to send AT com...
Samsung Galaxy S6 Firmware G920fxxu2coh2
Samsung Galaxy Note 3 Firmware N9005xxugbob6
Samsung Galaxy S4 Mini Firmware I9192xxubnb1
Samsung Galaxy S4 Mini Lte Firmware I9195xxucol1
Samsung Galaxy S4 Firmware I9505xxuhoj2
2 Github repositories
2.1
CVSSv2
CVE-2016-4032
Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3), GT-I9192 build I9192XXUBNB1 (Galaxy S4 mini), GT-I9195 build I9195XXUCOL1 (Galaxy S4 mini LTE), and GT-I9505 build I9505XXUHOJ2 (Galaxy S4) devices do not block AT+USBDEBUG and AT+WIFI...
Samsung Galaxy S6 Firmware G920fxxu2coh2
Samsung Galaxy Note 3 Firmware N9005xxugbob6
Samsung Galaxy S4 Mini Firmware I9192xxubnb1
Samsung Galaxy S4 Mini Lte Firmware I9195xxucol1
Samsung Galaxy S4 Firmware I9505xxuhoj2
2 Github repositories
NA
CVE-2022-40278
An issue exists in Samsung TizenRT up to and including 3.0_GBM (and 3.1_PRE). createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3_free after sqlite3_exec, leading to a denial of service.
Samsung Tizenrt 3.0
Samsung Tizenrt 1.0
Samsung Tizenrt 1.1
Samsung Tizenrt 2.0
Samsung Tizenrt 3.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »