Samsung Android vulnerabilities

448 known vulnerabilities affecting samsung/android.

Total CVEs
448
CISA KEV
12
actively exploited
Public exploits
0
Exploited in wild
10
Severity breakdown
CRITICAL9HIGH160MEDIUM218LOW61

Vulnerabilities

Page 23 of 23
CVE-2021-25489MEDIUMCVSS 5.5KEVv8.1v9.0+2 more2021-10-06
CVE-2021-25489 [MEDIUM] CWE-20 CVE-2021-25489: Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic.
nvd
CVE-2021-25394MEDIUMCVSS 6.4KEVv8.1v9.0+2 more2021-06-11
CVE-2021-25394 [MEDIUM] CWE-416 CVE-2021-25394: A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021 Releas A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows arbitrary write given a radio privilege is compromised.
nvd
CVE-2021-25395MEDIUMCVSS 6.4KEVv8.1v9.0+2 more2021-06-11
CVE-2021-25395 [MEDIUM] CWE-362 CVE-2021-25395: A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to byp A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised.
nvd
CVE-2021-25370MEDIUMCVSS 4.4KEVv8.0v8.1+3 more2021-03-26
CVE-2021-25370 [MEDIUM] CWE-416 CVE-2021-25370: An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release 1 r An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release 1 results in memory corruption leading to kernel panic.
nvd
CVE-2021-25372MEDIUMCVSS 6.7KEVv10.0v11.02021-03-26
CVE-2021-25372 [MEDIUM] CWE-787 CVE-2021-25372: An improper boundary check in DSP driver prior to SMR Mar-2021 Release 1 allows out of bounds memory An improper boundary check in DSP driver prior to SMR Mar-2021 Release 1 allows out of bounds memory access.
nvd
CVE-2021-25369MEDIUMCVSS 5.5KEVv8.0v8.1+2 more2021-03-26
CVE-2021-25369 [MEDIUM] CWE-200 CVE-2021-25369: An improper access control vulnerability in sec_log file prior to SMR MAR-2021 Release 1 exposes sen An improper access control vulnerability in sec_log file prior to SMR MAR-2021 Release 1 exposes sensitive kernel information to userspace.
nvd
CVE-2021-25371MEDIUMCVSS 6.7KEVv10.0v11.02021-03-26
CVE-2021-25371 [MEDIUM] CWE-912 CVE-2021-25371: A vulnerability in DSP driver prior to SMR Mar-2021 Release 1 allows attackers load arbitrary ELF li A vulnerability in DSP driver prior to SMR Mar-2021 Release 1 allows attackers load arbitrary ELF libraries inside DSP.
nvd
CVE-2021-25337HIGHCVSS 7.1KEVv9.0v10.0+1 more2021-03-04
CVE-2021-25337 [HIGH] CWE-269 CVE-2021-25337: Improper access control in clipboard service in Samsung mobile devices prior to SMR Mar-2021 Release Improper access control in clipboard service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to read or write certain local files.
nvd
← Previous23 / 23