Samsung Security Vulnerabilities (CVEs)

This vulnerability allows local attackers to read out-of-bounds memory in Samsung Notes when parsing JPEG images. Attackers could potentially access s...

This vulnerability allows local attackers to execute arbitrary code by exploiting an out-of-bounds write when parsing BMP images in Samsung Notes. Att...

This vulnerability allows local attackers to read out-of-bounds memory when parsing RLE-compressed BMP images in Samsung Notes. It affects Samsung Not...

This vulnerability in Samsung's My Files app on Android 14 allows local attackers to improperly access files with the app's elevated privileges. It af...

This vulnerability allows local attackers to read memory outside the intended buffer when Samsung Notes parses WBMP image files. Attackers could poten...

This vulnerability allows local attackers to execute arbitrary code by exploiting an out-of-bounds write when parsing JPEG images in Samsung Notes. At...

An out-of-bounds read vulnerability in Samsung Notes' action link data handling allows attackers to read memory beyond allocated boundaries. This affe...

An out-of-bounds read vulnerability in Samsung Notes allows attackers to read memory beyond intended boundaries when appending text paragraphs. This a...

A physical access control vulnerability in Samsung Notes allows attackers with physical device access to bypass user profile isolation and access data...

An out-of-bounds read vulnerability in Samsung Notes' handwriting content processing allows attackers to read memory beyond allocated boundaries. This...

An out-of-bounds read vulnerability in Samsung Notes' SPen string reading functionality allows attackers to access memory beyond intended boundaries. ...

An out-of-bounds read vulnerability in Samsung Notes allows attackers to read memory beyond allocated boundaries when processing extra data in base co...

This vulnerability in Samsung's Auracast feature allows nearby attackers to access Auracast broadcasting due to insufficiently random values. It affec...

This vulnerability allows local attackers to access Galaxy Watch Gallery data due to incorrect default permissions. It affects Samsung Galaxy Watch de...

An incorrect default permission vulnerability in DiagMonAgent on Samsung Galaxy Watch devices allows local attackers to access sensitive data. This af...

This vulnerability allows local attackers to bypass access controls in Samsung's SecSettingsIntelligence component, enabling them to launch privileged...

A null pointer dereference vulnerability in Samsung Exynos 1480 and 2400 mobile processors' Xclipse GPU driver allows attackers to cause denial of ser...

A missing null pointer check in the Xclipse GPU driver for Samsung Exynos mobile processors allows attackers to cause denial of service. This affects ...

This vulnerability allows local privileged attackers to read and write out-of-bounds memory in Samsung mPOS TUI trustlet software. It affects Samsung ...

This vulnerability allows local privileged attackers to disable Samsung Find functionality on affected Samsung devices. It involves improper privilege...

This vulnerability in Samsung Members app allows physical attackers to bypass user profile isolation and access data from other user profiles on the s...

An out-of-bounds write vulnerability in Blockchain Keystore allows local privileged attackers to write to memory beyond allocated bounds. This affects...

This vulnerability allows local attackers to execute arbitrary code with elevated privileges on Samsung devices by exploiting an out-of-bounds write i...

This vulnerability allows local attackers to read arbitrary memory by exploiting an out-of-bounds read in the libsthmbc.so library when processing mal...

An improper access control vulnerability in Samsung's NotificationManager allows local attackers to modify notification configurations without proper ...

This vulnerability in Samsung's EasySetup allows local attackers to access sensitive information due to improper use of implicit intents. It affects S...

This vulnerability allows local attackers to execute arbitrary code with elevated privileges on affected Samsung devices by exploiting an out-of-bound...

This vulnerability allows physical attackers to bypass access controls in Samsung's SoundPicker component, enabling unauthorized access to data across...

This vulnerability allows local privileged attackers to perform out-of-bounds writes in the softsim trustlet, leading to memory corruption. It affects...

This vulnerability allows local attackers to read arbitrary memory through an out-of-bounds read in the svp8t table handling of libsthmbc.so library. ...

This vulnerability allows local attackers to execute arbitrary code with elevated privileges on affected Samsung devices by exploiting an out-of-bound...

This vulnerability allows local attackers to read arbitrary memory by exploiting an out-of-bounds read in the smp4vtd bitstream decoder in libsthmbc.s...

This vulnerability is an out-of-bounds write in libsthmbc.so video decoding library that allows local attackers to execute arbitrary code with elevate...

This vulnerability in Samsung Exynos processors allows information leakage when a malformed uplink scheduling message is incorrectly handled. It affec...

This CVE describes a path traversal vulnerability in Samsung's Quick Share Agent on Android devices. It allows adjacent attackers (on the same network...

This path traversal vulnerability in Samsung's ThemeCenter allows physical attackers with device access to copy APK files to arbitrary locations using...

This vulnerability allows local attackers to bypass cryptographic signature verification in Samsung SmartSwitch, enabling installation of malicious ap...

This vulnerability allows remote attackers to execute arbitrary code on affected Samsung devices due to an out-of-bounds write in libsaped.so. It affe...

This vulnerability in Samsung SmartThings allows local attackers to access sensitive information through improper use of implicit intents. It affects ...

A memory corruption vulnerability in Samsung Exynos baseband software allows attackers to write data beyond allocated buffer boundaries by exploiting ...

A vulnerability in Samsung Exynos baseband software allows denial of service attacks by exploiting improper length validation in the Mobility Manageme...

An out-of-bounds write vulnerability in the Battery Full Capacity node on Samsung Galaxy S24 devices allows local attackers with system privilege to w...

This vulnerability allows physical attackers to access voice recording files from Samsung Voice Recorder while the device is on the lock screen. It af...

This vulnerability in Samsung Pass allows physical attackers to bypass authentication and access sensitive information stored in the Private Info feat...

An improper access control vulnerability in Samsung Flow allows physical attackers to access data across multiple user profiles on the same device. Th...

This vulnerability is an out-of-bounds write in libsapeextractor.so that allows local attackers to cause memory corruption. It affects Samsung devices...

This vulnerability in WlanTest allows local attackers to access sensitive information through improper use of implicit intents. It affects Samsung mob...

This vulnerability allows local attackers to bypass input validation in Settings Suggestions on Samsung devices, enabling them to launch privileged ac...

This vulnerability allows local attackers to cause a Denial-of-Service (DoS) condition in Samsung mobile devices by exploiting improper input validati...

An out-of-bounds write vulnerability in libsubextractor.so subtitle parsing library allows local attackers to cause memory corruption when processing ...