Samsung Security Vulnerabilities (CVEs)

This vulnerability allows attackers to execute arbitrary code or cause denial of service on affected Samsung Exynos processors due to a heap overflow ...

This vulnerability is a heap buffer overflow in Samsung's USAT component affecting multiple Exynos chipsets used in mobile devices, wearables, and mod...

CVE-2024-34669 is an out-of-bounds write vulnerability in librtppayload.so's h.263+ format parser that allows remote attackers to execute arbitrary co...

This vulnerability in SamsungVideoPlayer allows local attackers to bypass user isolation and access video files belonging to other users on the same d...

This vulnerability allows remote attackers to execute arbitrary code with system privileges by exploiting an out-of-bounds write in the H.264 parsing ...

This vulnerability allows remote attackers to execute arbitrary code with system privileges by exploiting an out-of-bounds write in the H.265 video fo...

A use-after-free vulnerability in the m2m scaler driver of Samsung Exynos mobile and wearable processors allows local attackers to escalate privileges...

The Samsung Universal Print Driver for Windows contains a privilege escalation vulnerability that allows attackers to create a reverse shell with elev...

A pointer dereference vulnerability in Samsung Exynos baseband software allows attackers to cause denial of service by exploiting improper pointer val...

This vulnerability in Samsung Exynos wearable and mobile processors allows attackers to trigger an integer overflow and heap over-read in the slsi_rx_...

A heap overflow vulnerability in Samsung Exynos mobile processors allows attackers to overwrite heap memory by sending unvalidated data to the slsi_ge...

A heap over-read vulnerability in Samsung Exynos mobile and wearable processors allows attackers to read memory beyond allocated buffers. This affects...

Samsung Assistant versions before 9.1.00.7 have a permission handling flaw that allows remote attackers to access location data when user interaction ...

An out-of-bounds read vulnerability in Samsung Notes allows local attackers to bypass ASLR (Address Space Layout Randomization). This affects Samsung ...

This vulnerability in GroupSharing allows remote attackers to force victims to join groups without their consent, potentially exposing sensitive infor...

This vulnerability allows local attackers to bypass authorization checks in Samsung's kperfmon performance monitoring component, enabling unauthorized...

This vulnerability in Samsung's My Files app allows local attackers to improperly export application components, enabling them to access files with My...

A path traversal vulnerability in Samsung Notes allows local attackers to execute arbitrary code by manipulating file paths. This affects Samsung Note...

This vulnerability allows local attackers to bypass authorization checks in CocktailbarService on Samsung devices, enabling access to privileged Edge ...

This vulnerability in Samsung's ThemeCenter allows physical attackers to bypass input validation and install privileged applications on affected devic...

This vulnerability allows local attackers on Samsung devices to access privileged Knox APIs without proper licensing. It affects Samsung devices runni...

This vulnerability in Samsung's FeliCaTest application allows local attackers to improperly export Android application components, enabling unauthoriz...

This vulnerability in Samsung's Dressroom application allows local attackers to access protected data through improper access control in key input fun...

This vulnerability allows local attackers on affected Android devices to bypass background service restrictions through improper access control in Win...

This vulnerability in Samsung Setupwizard allows physical attackers to bypass proper validation by exploiting improper handling of exceptional conditi...

This vulnerability allows attackers to write arbitrary files with system-level privileges on Samsung MagicINFO 9 Server by exploiting improper pathnam...

An out-of-bounds read vulnerability in Samsung Notes' UUID parsing allows a local attacker to read unauthorized memory. This affects Samsung Notes ver...

An out-of-bounds read vulnerability in Samsung Notes allows a local attacker to access unauthorized memory when parsing connected object lists. This a...

Samsung Email versions before 6.1.94.2 use implicit intents for sensitive communication, allowing local attackers on the same device to access sensiti...

An out-of-bounds read vulnerability in Samsung Notes allows local attackers to potentially read arbitrary memory contents. This affects Samsung Notes ...

An out-of-bounds read vulnerability in Samsung Notes allows local attackers to potentially read memory contents when applying their own binary with a ...

An out-of-bounds read vulnerability in Samsung Notes allows local attackers to potentially read memory contents. This affects Samsung Notes versions p...

This vulnerability allows local attackers to write data beyond intended memory boundaries in Samsung Notes, potentially enabling arbitrary code execut...

An out-of-bounds read vulnerability in Samsung Notes allows local attackers to potentially read memory contents. This affects Samsung Notes versions p...

An out-of-bounds read vulnerability in Samsung Notes allows local attackers to potentially read memory contents. This affects Samsung Notes versions p...

This vulnerability in Samsung Knox DualDAR policy allows local attackers to bypass permission checks and access sensitive data stored on affected devi...

This vulnerability allows local attackers on Samsung devices to access cell-related information due to improper access control in the System property....

This vulnerability allows remote attackers to execute arbitrary code with system privileges on affected Samsung devices due to improper input validati...

This vulnerability is an out-of-bounds write in Samsung's libcodec2secmp4vdec.so library that allows local attackers to execute arbitrary code with el...

This vulnerability is an out-of-bounds write in libsmat.so that allows local attackers to execute arbitrary code with elevated privileges. It affects ...

This vulnerability allows local attackers to bypass restrictions on starting services from the background in SamsungHealthService. It affects Samsung ...

This vulnerability allows local attackers to bypass Samsung's background service restrictions in SamsungNotesService, enabling unauthorized service ex...

An improper access control vulnerability in ExtControlDeviceService on Samsung devices allows local attackers to bypass security restrictions and acce...

This vulnerability in Samsung Exynos 1380 and 1480 processors allows attackers to perform heap overwrite attacks by sending specially crafted data to ...

This vulnerability in Samsung Exynos processors and modems allows attackers to exploit incorrect LTE NAS message authorization, forcing devices to dow...

This vulnerability allows out-of-bounds heap buffer access in the SIM Proactive Command handler of affected Samsung processors and modems. Attackers c...

A length validation vulnerability in multiple Samsung Exynos mobile processors allows attackers to trigger denial of service conditions. This affects ...

This vulnerability in Samsung Exynos Modem 5300 allows a Man-in-the-Middle attacker to downgrade the security mode of packets, enabling the attacker t...

An improper access control vulnerability in Samsung Message app allows local attackers to access location data without proper permissions. This affect...