CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2020-15582
https://notcve.org/view.php?id=CVE-2020-15582
An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) (Exynos 7885 chipsets) software. The Bluetooth Low Energy (BLE) component has a buffer overflow with a resultant deadlock or crash. The Samsung ID is SVE-2020-16870 (July 2020). Se detectó un problema en dispositivos móviles Samsung con versiones de software P(9.0) y Q(10.0) (chipsets Exynos 7885). El componente Bluetooth Low Energy (BLE) presenta un desbordamiento del búfer con un punto muerto o bloqueo resultante. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 13EXPL: 0CVE-2019-20610
https://notcve.org/view.php?id=CVE-2019-20610
An issue was discovered on Samsung mobile devices with N(7.X) and O(8.X) (Exynos 7570, 7870, 7880, 7885, 8890, 8895, and 9810 chipsets) software. A double-fetch vulnerability in Trustlet allows arbitrary TEE code execution. The Samsung ID is SVE-2019-13910 (April 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.X) y O(8.X) (Exynos 7570, 7870, 7880, 7885, 8890, 8895 y 9810). Una vulnerabilidad de doble extracción en Trustlet permite una ejecución arbitraria de código TEE. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2019-20556
https://notcve.org/view.php?id=CVE-2019-20556
An issue was discovered on Samsung mobile devices with P(9.0) (SM6150, SM8150, SM8150_FUSION, exynos7885, exynos9610, and exynos9820 chipsets) software. RKP memory corruption allows attackers to control the effective address in EL2. The Samsung ID is SVE-2019-15221 (October 2019). Se detectó un problema en dispositivos móviles Samsung con versión de software P(9.0) (SM6150, SM8150, SM8150_FUSION, exynos7885, exynos9610 y exynos9820). La corrupción de la memoria RKP permite a atacantes controlar la dirección efectiva en EL2. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2019-20553
https://notcve.org/view.php?id=CVE-2019-20553
An issue was discovered on Samsung mobile devices with P(9.0) (SM6150, SM8150, SM8150_FUSION, exynos7885, exynos9610, and exynos9820 chipsets) software. Arbitrary memory read and write operations can occur in RKP. The Samsung ID is SVE-2019-15143 (October 2019). Se detectó un problema en dispositivos móviles Samsung con versión de software P(9.0) (SM6150, SM8150, SM8150_FUSION, exynos7885, exynos9610 y exynos9820). Las operaciones de lectura y escritura de memoria arbitraria pueden presentarse en RKP. • https://security.samsungmobile.com/securityUpdate.smsb •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2020-10849
https://notcve.org/view.php?id=CVE-2020-10849
An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos7885, Exynos8895, and Exynos9810 chipsets) software. The Gatekeeper trustlet allows a brute-force attack on the screen lock password. The Samsung ID is SVE-2019-14575 (January 2020). Se detectó un problema en dispositivos móviles Samsung con versiones de software O(8.x), P(9.0) y Q(10.0) (Exynos7885, Exynos8895 y Exynos9810). El Gatekeeper trustlet permite un ataque de fuerza bruta en la contraseña de bloqueo de pantalla. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-307: Improper Restriction of Excessive Authentication Attempts •