Samsung Mobile Devices vulnerabilities

CVE-2022-27823 [HIGH] CWE-125 CVE-2022-27823: Improper size check in sapefd_parse_meta_HEADER_old function of libsapeextractor library prior to SM Improper size check in sapefd_parse_meta_HEADER_old function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file.

CVE-2022-27822 [MEDIUM] CWE-284 CVE-2022-27822: Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1 allows Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1 allows access to EF_RUIMID value without permission.

CVE-2022-26091 [MEDIUM] CWE-284 CVE-2022-26091: Improper access control vulnerability in Knox Manage prior to SMR Apr-2022 Release 1 allows that phy Improper access control vulnerability in Knox Manage prior to SMR Apr-2022 Release 1 allows that physical attackers can bypass Knox Manage using a function key of hardware keyboard.

CVE-2022-27821 [MEDIUM] CWE-125 CVE-2022-27821: Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows attackers to ca Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows attackers to cause denial of service via crafted image file.

CVE-2022-25832 [MEDIUM] CWE-287 CVE-2022-25832: Improper authentication vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical at Improper authentication vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical attackers to use locked Myfiles app without authentication.

CVE-2022-27831 [MEDIUM] CWE-125 CVE-2022-27831: Improper boundary check in sflvd_rdbuf_bits of libsflvextractor prior to SMR Apr-2022 Release 1 allo Improper boundary check in sflvd_rdbuf_bits of libsflvextractor prior to SMR Apr-2022 Release 1 allows attackers to read out of bounds memory.

CVE-2022-25831 [MEDIUM] CWE-284 CVE-2022-25831: Improper access control vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical at Improper access control vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical attackers to access secured data in certain conditions.

CVE-2022-27576 [LOW] CWE-200 CVE-2022-27576: Information exposure vulnerability in Samsung DeX Home prior to SMR April-2022 Release 1 allows to a Information exposure vulnerability in Samsung DeX Home prior to SMR April-2022 Release 1 allows to access currently launched foreground app information without permission

CVE-2022-25833 [LOW] CWE-287 CVE-2022-25833: Improper authentication in ImsService prior to SMR Apr-2022 Release 1 allows attackers to get IMSI w Improper authentication in ImsService prior to SMR Apr-2022 Release 1 allows attackers to get IMSI without READ_PRIVILEGED_PHONE_STATE permission.

CVE-2022-27832 [LOW] CWE-125 CVE-2022-27832: Improper boundary check in media.extractor library prior to SMR Apr-2022 Release 1 allows attackers Improper boundary check in media.extractor library prior to SMR Apr-2022 Release 1 allows attackers to cause denial of service via a crafted media file.

CVE-2022-27575 [LOW] CWE-200 CVE-2022-27575: Information exposure vulnerability in One UI Home prior to SMR April-2022 Release 1 allows to access Information exposure vulnerability in One UI Home prior to SMR April-2022 Release 1 allows to access currently launched foreground app information without permission.

CVE-2022-25818 [CRITICAL] CWE-20 CVE-2022-25818: Improper boundary check in UWB stack prior to SMR Mar-2022 Release 1 allows arbitrary code execution Improper boundary check in UWB stack prior to SMR Mar-2022 Release 1 allows arbitrary code execution.

CVE-2022-24931 [HIGH] CWE-269 CVE-2022-24931: Improper access control vulnerability in dynamic receiver in ApkInstaller prior to SMR MAR-2022 Rele Improper access control vulnerability in dynamic receiver in ApkInstaller prior to SMR MAR-2022 Release allows unauthorized attackers to execute arbitrary activity without a proper permission

CVE-2022-25815 [HIGH] CWE-276 CVE-2022-25815: PendingIntent hijacking vulnerability in Weather application prior to SMR Mar-2022 Release 1 allows PendingIntent hijacking vulnerability in Weather application prior to SMR Mar-2022 Release 1 allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent.

CVE-2022-24928 [HIGH] CWE-815 CVE-2022-24928: Security misconfiguration of RKP in kernel prior to SMR Mar-2022 Release 1 allows a system not to be Security misconfiguration of RKP in kernel prior to SMR Mar-2022 Release 1 allows a system not to be protected by RKP.

CVE-2022-25821 [HIGH] CWE-125 CVE-2022-25821: Improper use of SMS buffer pointer in Shannon baseband prior to SMR Mar-2022 Release 1 allows OOB re Improper use of SMS buffer pointer in Shannon baseband prior to SMR Mar-2022 Release 1 allows OOB read.

CVE-2022-25814 [HIGH] CWE-276 CVE-2022-25814: PendingIntent hijacking vulnerability in Wearable Manager Installer prior to SMR Mar-2022 Release 1 PendingIntent hijacking vulnerability in Wearable Manager Installer prior to SMR Mar-2022 Release 1 allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent.

CVE-2022-25822 [MEDIUM] CWE-362 CVE-2022-25822: An use after free vulnerability in sdp driver prior to SMR Mar-2022 Release 1 allows kernel crash. An use after free vulnerability in sdp driver prior to SMR Mar-2022 Release 1 allows kernel crash.

CVE-2022-25820 [MEDIUM] CWE-307 CVE-2022-25820: A vulnerable design in fingerprint matching algorithm prior to SMR Mar-2022 Release 1 allows physica A vulnerable design in fingerprint matching algorithm prior to SMR Mar-2022 Release 1 allows physical attackers to perform brute force attack on screen lock password.

CVE-2022-25816 [MEDIUM] CWE-287 CVE-2022-25816: Improper authentication in Samsung Lock and mask apps setting prior to SMR Mar-2022 Release 1 allows Improper authentication in Samsung Lock and mask apps setting prior to SMR Mar-2022 Release 1 allows attacker to change enable/disable without authentication