CVE-2023-30681
https://notcve.org/view.php?id=CVE-2023-30681
An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write. Vulnerabilidad de validación de entrada inadecuada en la función de inicialización de HAL VaultKeeper anterior a SMR Aug-2023 Release 1 permite a un atacante provocar una escritura fuera de los límites. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=08 • CWE-787: Out-of-bounds Write •
CVE-2023-30679
https://notcve.org/view.php?id=CVE-2023-30679
Improper access control in HDCP trustlet prior to SMR Aug-2023 Release 1 allows local attackers to execute arbitrary code. Control de acceso inadecuado en HDCP trustlet anterior a SMR Aug-2023 Release 1 que permite a los atacantes locales ejecutar código arbitrario. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=08 •
CVE-2023-30654
https://notcve.org/view.php?id=CVE-2023-30654
Improper access control vulnerability in SLocationService prior to SMR Aug-2023 Release 1 allows local attacker to update fake location. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=08 •
CVE-2023-20811
https://notcve.org/view.php?id=CVE-2023-20811
In IOMMU, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03692061; Issue ID: DTV03692061. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVE-2023-20810
https://notcve.org/view.php?id=CVE-2023-20810
In IOMMU, there is a possible information disclosure due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03692061; Issue ID: DTV03692061. • https://corp.mediatek.com/product-security-bulletin/August-2023 •