Samsung Blockchain Keystore vulnerabilities

8 known vulnerabilities affecting samsung/blockchain_keystore.

Total CVEs
8
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM7

Vulnerabilities

Page 1 of 1
CVE-2025-21018MEDIUMCVSS 4.4fixed in 1.3.17.22025-08-06
CVE-2025-21018 [MEDIUM] CWE-125 CVE-2025-21018: Out-of-bounds read in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attacker Out-of-bounds read in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to read out-of-bounds memory.
nvd
CVE-2025-21017MEDIUMCVSS 6.7fixed in 1.3.17.22025-08-06
CVE-2025-21017 [MEDIUM] CWE-787 CVE-2025-21017: Out-of-bounds write in detaching crypto box in Blockchain Keystore prior to version 1.3.17.2 allows Out-of-bounds write in detaching crypto box in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory.
nvd
CVE-2025-21021MEDIUMCVSS 6.7fixed in 1.3.17.22025-08-06
CVE-2025-21021 [MEDIUM] CWE-787 CVE-2025-21021: Out-of-bounds write in drawing pinpad in Blockchain Keystore prior to version 1.3.17.2 allows local Out-of-bounds write in drawing pinpad in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory.
nvd
CVE-2025-21020MEDIUMCVSS 6.7fixed in 1.3.17.22025-08-06
CVE-2025-21020 [MEDIUM] CWE-787 CVE-2025-21020: Out-of-bounds write in creating bitmap images in Blockchain Keystore prior to version 1.3.17.2 allow Out-of-bounds write in creating bitmap images in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory.
nvd
CVE-2025-20900MEDIUMCVSS 4.4fixed in 1.3.16.52025-02-04
CVE-2025-20900 [MEDIUM] CWE-787 CVE-2025-20900: Out-of-bounds write in Blockchain Keystore prior to version 1.3.16.5 allows local privileged attacke Out-of-bounds write in Blockchain Keystore prior to version 1.3.16.5 allows local privileged attackers to write out-of-bounds memory.
nvd
CVE-2025-20901MEDIUMCVSS 4.4fixed in 1.3.16.52025-02-04
CVE-2025-20901 [MEDIUM] CWE-125 CVE-2025-20901: Out-of-bounds read in Blockchain Keystore prior to version 1.3.16.5 allows local privileged attacker Out-of-bounds read in Blockchain Keystore prior to version 1.3.16.5 allows local privileged attackers to read out-of-bounds memory.
nvd
CVE-2024-49406MEDIUMCVSS 4.4fixed in 1.3.162024-11-06
CVE-2024-49406 [MEDIUM] CWE-354 CVE-2024-49406: Improper validation of integrity check value in Blockchain Keystore prior to version 1.3.16 allows l Improper validation of integrity check value in Blockchain Keystore prior to version 1.3.16 allows local attackers to modify transaction. Root privilege is required for triggering this vulnerability.
nvd
CVE-2023-30722HIGHCVSS 7.8fixed in 1.3.13.52023-09-06
CVE-2023-30722 [MEDIUM] CVE-2023-30722: Protection Mechanism Failure in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1. Protection Mechanism Failure in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.13.5 allows local attacker to execute arbitrary code.
nvd