CVSS: 6.5EPSS: 0%CPEs: 29EXPL: 1CVE-2020-6616 – Apple Security Advisory 2020-05-26-1
https://notcve.org/view.php?id=CVE-2020-6616
08 May 2020 — Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations where a Hardware Random Number Generator (HRNG) should have been used to prevent spoofing. This affects, for example, Samsung Galaxy S8, S8+, and Note8 devices with the BCM4361 chipset. The Samsung ID is SVE-2020-16882 (May 2020). Algunos chips Broadcom manejan inapropiadamente la generación de números aleatorios de Bluetooth porque es usado un Pseudo Random Numb... • http://bluetooth.lol •
CVSS: 6.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-10847
https://notcve.org/view.php?id=CVE-2020-10847
24 Mar 2020 — An issue was discovered on Samsung mobile devices with P(9.0) (Galaxy S8 and Note8) software. Facial recognition can be spoofed. The Samsung ID is SVE-2019-16614 (February 2020). Se detectó un problema en dispositivos móviles Samsung con versión de software P(9.0) (Galaxy S8 y Note8). El reconocimiento facial puede ser falsificado. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 1CVE-2019-19273
https://notcve.org/view.php?id=CVE-2019-19273
04 Feb 2020 — On Samsung mobile devices with O(8.0) and P(9.0) software and an Exynos 8895 chipset, RKP (aka the Samsung Hypervisor EL2 implementation) allows arbitrary memory write operations. The Samsung ID is SVE-2019-16265. En dispositivos móviles Samsung con versiones de software O(8.0) y P(9.0) y un chipset Exynos versión 8895, RKP (también se conoce como la implementación Samsung Hypervisor EL2) permite operaciones de escritura de memoria arbitrarias. El ID de Samsung es SVE-2019-16265. • https://census-labs.com/news/2020/10/08/samsung-hypervisor-rkp-arbitrary-zero-write • CWE-787: Out-of-bounds Write •