CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-25419
https://notcve.org/view.php?id=CVE-2021-25419
Non-compliance of recommended secure coding scheme in Samsung Internet prior to version 14.0.1.62 allows attackers to display fake URL in address bar via phising URL link. El incumplimiento del esquema de codificación segura recomendado en Samsung Internet versiones anteriores a 14.0.1.62, permite a atacantes mostrar una URL falsa en la barra de direcciones por medio de un enlace de URL de phising • https://security.samsungmobile.com/serviceWeb.smsb?year=2021&month=6 • CWE-703: Improper Check or Handling of Exceptional Conditions •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2021-25408
https://notcve.org/view.php?id=CVE-2021-25408
A possible buffer overflow vulnerability in NPU driver prior to SMR JUN-2021 Release 1 allows arbitrary memory write and code execution. Una posible vulnerabilidad de desbordamiento de búfer en NPU driver versiones anteriores a SMR JUN-2021 Release 1, permite una escritura en memoria arbitraria y una ejecución de código • https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=6 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 6EXPL: 0CVE-2021-25411
https://notcve.org/view.php?id=CVE-2021-25411
Improper address validation vulnerability in RKP api prior to SMR JUN-2021 Release 1 allows root privileged local attackers to write read-only kernel memory. Una vulnerabilidad de comprobación de direcciones inapropiada en RKP api versiones anteriores a SMR JUN-2021 Release 1, permite a atacantes locales privilegiados de root escribir en la memoria del kernel de sólo lectura • https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=6 • CWE-20: Improper Input Validation CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2021-25407 – Samsung NPU npu_session_format Out-Of-Bounds Write
https://notcve.org/view.php?id=CVE-2021-25407
A possible out of bounds write vulnerability in NPU driver prior to SMR JUN-2021 Release 1 allows arbitrary memory write. Una posible vulnerabilidad de escritura fuera de límites en NPU driver versiones anteriores a SMR JUN-2021 Release 1, permite una escritura arbitraria en la memoria Samsung NPU (Neural Processing Unit) suffers from an out-of-bounds write vulnerability in npu_session_format. • http://packetstormsecurity.com/files/163198/Samsung-NPU-npu_session_format-Out-Of-Bounds-Write.html https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=6 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 382EXPL: 2CVE-2021-3438
https://notcve.org/view.php?id=CVE-2021-3438
A potential buffer overflow in the software drivers for certain HP LaserJet products and Samsung product printers could lead to an escalation of privilege. Un posible desbordamiento del búfer en los controladores de software para determinados productos HP LaserJet e impresoras de productos Samsung podría desencadenar una escalada de privilegios • https://github.com/CrackerCat/CVE-2021-3438 https://github.com/TobiasS1402/CVE-2021-3438 https://support.hp.com/us-en/document/ish_3900395-3833905-16 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •