cbcvebase.

Samsung Mobile Devices vulnerabilities

374 known vulnerabilities affecting samsung_mobile/samsung_mobile_devices.

Total CVEs
374
CISA KEV
11
actively exploited
Public exploits
0
Exploited in wild
11
Severity breakdown
CRITICAL37HIGH100MEDIUM142LOW95

Vulnerabilities

Page 6 of 19
CVE-2022-27827P3HIGHCVSS 7.8≥ O(10), R(11), S(12), < SMR Apr-2022 Release 12022-04-11
CVE-2022-27827 [HIGH] CWE-20 CVE-2022-27827: Improper validation vulnerability in MediaMonitorDimension prior to SMR Apr-2022 Release 1 allows at Improper validation vulnerability in MediaMonitorDimension prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.
nvd
CVE-2022-27830P3HIGHCVSS 7.8≥ S(12), < SMR Apr-2022 Release 12022-04-11
CVE-2022-27830 [HIGH] CWE-20 CVE-2022-27830: Improper validation vulnerability in SemBlurInfo prior to SMR Apr-2022 Release 1 allows attackers to Improper validation vulnerability in SemBlurInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.
nvd
CVE-2022-27829P3HIGHCVSS 7.8≥ S(12), < SMR Apr-2022 Release 12022-04-11
CVE-2022-27829 [HIGH] CWE-20 CVE-2022-27829: Improper validation vulnerability in VerifyCredentialResponse prior to SMR Apr-2022 Release 1 allows Improper validation vulnerability in VerifyCredentialResponse prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.
nvd
CVE-2022-30754P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Jul-2022 Release 12022-07-12
CVE-2022-30754 [HIGH] CWE-20 CVE-2022-30754: Implicit Intent hijacking vulnerability in AppLinker prior to SMR Jul-2022 Release 1 allow allows at Implicit Intent hijacking vulnerability in AppLinker prior to SMR Jul-2022 Release 1 allow allows attackers to launch certain activities with privilege of AppLinker.
nvd
CVE-2022-30756P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Jul-2022 Release 12022-07-12
CVE-2022-30756 [HIGH] CWE-20 CVE-2022-30756: Implicit Intent hijacking vulnerability in Finder prior to SMR Jul-2022 Release 1 allow allows attac Implicit Intent hijacking vulnerability in Finder prior to SMR Jul-2022 Release 1 allow allows attackers to launch certain activities with privilege of Finder.
nvd
CVE-2022-24928P3HIGHCVSS 7.8≥ R(11), < SMR Mar-2022 Release 12022-03-10
CVE-2022-24928 [HIGH] CWE-815 CVE-2022-24928: Security misconfiguration of RKP in kernel prior to SMR Mar-2022 Release 1 allows a system not to be Security misconfiguration of RKP in kernel prior to SMR Mar-2022 Release 1 allows a system not to be protected by RKP.
nvd
CVE-2021-25365P3HIGHCVSS 7.8≥ O(8.1), P(9.0), Q(10.0), R(11.0), < SMR APR-2021 Release 12021-04-09
CVE-2021-25365 [HIGH] CWE-269 CVE-2021-25365: An improper exception control in softsimd prior to SMR APR-2021 Release 1 allows unprivileged applic An improper exception control in softsimd prior to SMR APR-2021 Release 1 allows unprivileged applications to access the API in softsimd.
nvd
CVE-2021-25412P3HIGHCVSS 7.8≥ Q(10.0), < SMA JUN-2021 Release 12021-06-11
CVE-2021-25412 [HIGH] CWE-284 CVE-2021-25412: An improper access control vulnerability in genericssoservice prior to SMR JUN-2021 Release 1 allows An improper access control vulnerability in genericssoservice prior to SMR JUN-2021 Release 1 allows local attackers to execute protected activity with system privilege via untrusted applications.
nvd
CVE-2022-33704P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Jul-2022 Release 12022-07-12
CVE-2022-33704 [HIGH] CWE-20 CVE-2022-33704: Improper validation vulnerability in ucmRetParcelable of KnoxSDK prior to SMR Jul-2022 Release 1 all Improper validation vulnerability in ucmRetParcelable of KnoxSDK prior to SMR Jul-2022 Release 1 allows attackers to launch certain activities.
nvd
CVE-2022-36858P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Sep-2022 Release 12022-09-09
CVE-2022-36858 [HIGH] CWE-122 CVE-2022-36858: A heap-based overflow vulnerability in GetCorrectDbLanguageTypeEsPKc() function in libSDKRecognition A heap-based overflow vulnerability in GetCorrectDbLanguageTypeEsPKc() function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.
nvd
CVE-2022-36845P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Sep-2022 Release 12022-09-09
CVE-2022-36845 [HIGH] CWE-122 CVE-2022-36845: A heap-based overflow vulnerability in MHW_RECOG_LIB_INFO function in libSDKRecognitionText.spensdk. A heap-based overflow vulnerability in MHW_RECOG_LIB_INFO function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.
nvd
CVE-2022-36863P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Sep-2022 Release 12022-09-09
CVE-2022-36863 [HIGH] CWE-122 CVE-2022-36863: A heap-based overflow vulnerability in GetCorrectDbLanguageTypeEsPKc function in libSDKRecognitionTe A heap-based overflow vulnerability in GetCorrectDbLanguageTypeEsPKc function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.
nvd
CVE-2022-36846P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Sep-2022 Release 12022-09-09
CVE-2022-36846 [HIGH] CWE-122 CVE-2022-36846: A heap-based overflow vulnerability in ConstructDictionary function in libSDKRecognitionText.spensdk A heap-based overflow vulnerability in ConstructDictionary function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.
nvd
CVE-2022-36843P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Sep-2022 Release 12022-09-09
CVE-2022-36843 [HIGH] CWE-122 CVE-2022-36843: A heap-based overflow vulnerability in MHW_RECOG_LIB_INFO function in libSDKRecognitionText.spensdk. A heap-based overflow vulnerability in MHW_RECOG_LIB_INFO function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.
nvd
CVE-2022-36842P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Sep-2022 Release 12022-09-09
CVE-2022-36842 [HIGH] CWE-122 CVE-2022-36842: A heap-based overflow vulnerability in prepareRecogLibrary function in libSDKRecognitionText.spensdk A heap-based overflow vulnerability in prepareRecogLibrary function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.
nvd
CVE-2022-36841P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Sep-2022 Release 12022-09-09
CVE-2022-36841 [HIGH] CWE-122 CVE-2022-36841: A heap-based overflow vulnerability in PrepareRecogLibrary_Part function in libSDKRecognitionText.sp A heap-based overflow vulnerability in PrepareRecogLibrary_Part function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.
nvd
CVE-2022-36860P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Sep-2022 Release 12022-09-09
CVE-2022-36860 [HIGH] CWE-122 CVE-2022-36860: A heap-based overflow vulnerability in LoadEnvironment function in libSDKRecognitionText.spensdk.sam A heap-based overflow vulnerability in LoadEnvironment function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.
nvd
CVE-2022-25814P3HIGHCVSS 7.8≥ R(11), S(12), < SMR Mar-2022 Release 12022-03-10
CVE-2022-25814 [HIGH] CWE-276 CVE-2022-25814: PendingIntent hijacking vulnerability in Wearable Manager Installer prior to SMR Mar-2022 Release 1 PendingIntent hijacking vulnerability in Wearable Manager Installer prior to SMR Mar-2022 Release 1 allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent.
nvd
CVE-2022-39907P3HIGHCVSS 7.8≥ Q(10) and R(11) OS with libsadapter, S(12) and T(13) OS with libsthmbcadapter, < SMR Dec-2022 Release 12022-12-08
CVE-2022-39907 [HIGH] CWE-190 CVE-2022-39907: Integer overflow vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-202 Integer overflow vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds Write.
nvd
CVE-2022-39883P3HIGHCVSS 7.8≥ Q(10), R(11), S(12), < SMR Nov-2022 Release 12022-11-09
CVE-2022-39883 [HIGH] CWE-285 CVE-2022-39883: Improper authorization vulnerability in StorageManagerService prior to SMR Nov-2022 Release 1 allows Improper authorization vulnerability in StorageManagerService prior to SMR Nov-2022 Release 1 allows local attacker to call privileged API.
nvd
Samsung Mobile Devices vulnerabilities | cvebase