CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 1CVE-2020-35693
https://notcve.org/view.php?id=CVE-2020-35693
24 Dec 2020 — On some Samsung phones and tablets running Android through 7.1.1, it is possible for an attacker-controlled Bluetooth Low Energy (BLE) device to pair silently with a vulnerable target device, without any user interaction, when the target device's Bluetooth is on, and it is running an app that offers a connectable BLE advertisement. An example of such an app could be a Bluetooth-based contact tracing app, such as Australia's COVIDSafe app, Singapore's TraceTogether app, or France's TousAntiCovid (formerly St... • https://github.com/alwentiu/contact-tracing-research/blob/main/samsung.pdf •
CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0CVE-2015-8546
https://notcve.org/view.php?id=CVE-2015-8546
10 Apr 2020 — An issue was discovered on Samsung mobile devices with software through 2015-11-12, affecting the Galaxy S6/S6 Edge, Galaxy S6 Edge+, and Galaxy Note5 with the Shannon333 chipset. There is a stack-based buffer overflow in the baseband process that is exploitable for remote code execution via a fake base station. The Samsung ID is SVE-2015-5123 (December 2015). Se detectó un problema en dispositivos móviles Samsung con versiones de software hasta el 12-11-2015, afectando a Galaxy S6/S6 Edge, Galaxy S6 Edge+ ... • https://security.samsungmobile.com/securityUpdate.smsb • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 12EXPL: 0CVE-2016-11038
https://notcve.org/view.php?id=CVE-2016-11038
07 Apr 2020 — An issue was discovered on Samsung mobile devices with software through 2016-04-05 (incorporating the Samsung Professional Audio SDK). The Jack audio service doesn't implement access control for shared memory, leading to arbitrary code execution or privilege escalation. The Samsung ID is SVE-2016-5953 (July 2016). Se detectó un problema en dispositivos móviles Samsung con versiones de software hasta el 05-04-2019 (incorporando el Samsung Professional Audio SDK). El servicio de audio Jack no implementa el co... • https://security.samsungmobile.com/securityUpdate.smsb • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.2EPSS: 0%CPEs: 16EXPL: 0CVE-2019-12762
https://notcve.org/view.php?id=CVE-2019-12762
06 Jun 2019 — Xiaomi Mi 5s Plus devices allow attackers to trigger touchscreen anomalies via a radio signal between 198 kHz and 203 kHz, as demonstrated by a transmitter and antenna hidden just beneath the surface of a coffee-shop table, aka Ghost Touch. Los dispositivos Xiaomi Mi 5s Plus permiten a los atacantes desencadenar anomalías de la pantalla táctil a través de una señal de radio entre 198 kHz y 203 kHz, como lo demuestra un transmisor y una antena ocultos justo debajo de la superficie de una mesa de cafetería, t... • https://hackercombat.com/nfc-vulnerability-may-promote-ghost-screen-taps •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 2CVE-2018-14745
https://notcve.org/view.php?id=CVE-2018-14745
15 Mar 2019 — Buffer overflow in prot_get_ring_space in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker (who has obtained code execution on the Wi-Fi chip) to overwrite kernel memory due to improper validation of the ring buffer read pointer. The Samsung ID is SVE-2018-12029. Desbordamiento de búfer en prot_get_ring_space en el controlador Wi-Fi bcmdhd4358 en Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 permite que un atacante (que ha obtenido la ejecución de código en el chip W... • https://github.com/securesystemslab/periscope/blob/master/bugs-found/CVE-2018-14745.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 2CVE-2018-14852
https://notcve.org/view.php?id=CVE-2018-14852
17 Dec 2018 — Out-of-bounds array access in dhd_rx_frame in drivers/net/wireless/bcmdhd4358/dhd_linux.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker (who has obtained code execution on the Wi-Fi chip) to cause invalid accesses to operating system memory due to improper validation of the network interface index provided by the Wi-Fi chip's firmware. Acceso al array fuera de límites en dhd_rx_frame en drivers/net/wireless/bcmdhd4358/dhd_linux.c en el controlador Wi-Fi bc... • https://github.com/securesystemslab/periscope/blob/master/bugs-found/CVE-2018-14852.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 2CVE-2018-14853
https://notcve.org/view.php?id=CVE-2018-14853
17 Dec 2018 — A NULL pointer dereference in dhd_prot_txdata_write_flush in drivers/net/wireless/bcmdhd4358/dhd_msgbuf.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker (who has obtained code execution on the Wi-Fi chip) to cause the device to reboot. The Samsung ID is SVE-2018-11783. Una desreferencia de puntero NULL en dhd_prot_txdata_write_flush en drivers/net/wireless/bcmdhd4358/dhd_msgbuf.c en el controlador Wi-Fi bcmdhd4358 en Samsung Galaxy S6 SM-G920F G920FXXU5EQH7... • https://github.com/securesystemslab/periscope/blob/master/bugs-found/CVE-2018-14853.md • CWE-476: NULL Pointer Dereference •
CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 2CVE-2018-14854
https://notcve.org/view.php?id=CVE-2018-14854
17 Dec 2018 — Buffer overflow in dhd_bus_flow_ring_delete_response in drivers/net/wireless/bcmdhd4358/dhd_pcie.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allow an attacker (who has obtained code execution on the Wi-Fi chip) to cause the device driver to perform invalid memory accesses. The Samsung ID is SVE-2018-11785. Un desbordamiento de búfer en dhd_bus_flow_ring_delete_response en drivers/net/wireless/bcmdhd4358/dhd_pcie.c en el controlador Wi-Fi bcmdhd4358 en Samsung Galaxy S6 S... • https://github.com/securesystemslab/periscope/blob/master/bugs-found/CVE-2018-14854_CVE-2018-14855_CVE-2018-14856.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 2CVE-2018-14855
https://notcve.org/view.php?id=CVE-2018-14855
17 Dec 2018 — Buffer overflow in dhd_bus_flow_ring_flush_response in drivers/net/wireless/bcmdhd4358/dhd_pcie.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 allow an attacker (who has obtained code execution on the Wi-Fi chip) to cause the device driver to perform invalid memory accesses. The Samsung ID is SVE-2018-11785. Un desbordamiento de búfer en dhd_bus_flow_ring_flush_response en drivers/net/wireless/bcmdhd4358/dhd_pcie.c en el controlador Wi-Fi bcmdhd4358 en Samsung Galaxy S6 permite que un atacante (q... • https://github.com/securesystemslab/periscope/blob/master/bugs-found/CVE-2018-14854_CVE-2018-14855_CVE-2018-14856.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 2CVE-2018-14856
https://notcve.org/view.php?id=CVE-2018-14856
17 Dec 2018 — Buffer overflow in dhd_bus_flow_ring_create_response in drivers/net/wireless/bcmdhd4358/dhd_pcie.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allow an attacker (who has obtained code execution on the Wi-Fi) chip to cause the device driver to perform invalid memory accesses. The Samsung ID is SVE-2018-11785. Un desbordamiento de búfer en dhd_bus_flow_ring_create_response en drivers/net/wireless/bcmdhd4358/dhd_pcie.c en el controlador Wi-Fi bcmdhd4358 en Samsung Galaxy S6 S... • https://github.com/securesystemslab/periscope/blob/master/bugs-found/CVE-2018-14854_CVE-2018-14855_CVE-2018-14856.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •