CVSS: 9.8EPSS: 0%CPEs: 23EXPL: 0CVE-2018-21054
https://notcve.org/view.php?id=CVE-2018-21054
An issue was discovered on Samsung mobile devices with M(6.0), N(7.x) and O(8.x) except exynos9610/9820 in all Platforms, M(6.0) except MSM8909 SC77xx/9830 exynos3470/5420, N(7.0) except MSM8939, N(7.1) except MSM8996 SDM6xx/M6737T software. There is an integer underflow with a resultant buffer overflow in eCryptFS. The Samsung ID is SVE-2017-11857 (September 2018). Se detectó un problema en dispositivos móviles Samsung con versiones de software M(6.0), N(7.x) y O(8.x) excepto exynos9610/9820 en todas las plataformas, M(6.0) excepto MSM8909 SC77xx/9830 exynos3470/5420, N( 7.0) excepto MSM8939, N(7.1) excepto el software MSM8996 SDM6xx/M6737T. Se presenta un desbordamiento de enteros con un desbordamiento de búfer resultante en eCryptFS. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2018-21058
https://notcve.org/view.php?id=CVE-2018-21058
An issue was discovered on Samsung mobile devices with N(7.0), O(8.0) (exynos7420 or Exynos 8890/8996 chipsets) software. Cache attacks can occur against the Keymaster AES-GCM implementation because T-Tables are used; the Cryptography Extension (CE) is not used. The Samsung ID is SVE-2018-12761 (September 2018). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.0), O(8.0) (exynos7420 o Exynos 8890/8996). Ataques de la memoria Caché pueden ocurrir contra la implementación Keymaster AES-GCM porque son usadas T-Tables; la Cryptography Extension (CE) no es usada. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 2.4EPSS: 0%CPEs: 10EXPL: 0CVE-2018-21073
https://notcve.org/view.php?id=CVE-2018-21073
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.0) (Galaxy S9+, Galaxy S9, Galaxy S8+, Galaxy S8, Note 8). There is access to Clipboard content in the locked state via the Edge panel. The Samsung ID is SVE-2017-10748 (May 2018). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.x) y O(8.0) (Galaxy S9+, Galaxy S9, Galaxy S8+, Galaxy S8, Note 8). Se presenta un acceso al contenido del Clipboard en el estado bloqueado por medio del panel Edge. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2018-21076
https://notcve.org/view.php?id=CVE-2018-21076
An issue was discovered on Samsung mobile devices with N(7.x) (Exynos8890/8895 chipsets) software. There is information disclosure (a KASLR offset) in the Secure Driver via a modified trustlet. The Samsung ID is SVE-2017-10987 (April 2018). Se detectó un problema en dispositivos móviles Samsung con versión de software N(7.x) (chipsets Exynos8890/8895). Se presenta una divulgación de información (un desplazamiento de KASLR) en el Controlador Seguro por medio de un trustlet modificado. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 3.3EPSS: 0%CPEs: 4EXPL: 0CVE-2018-21043
https://notcve.org/view.php?id=CVE-2018-21043
An issue was discovered on Samsung mobile devices with O(8.x) and P(9.0) (Exynos 9810 chipsets) software. There is information disclosure about a kernel pointer in the g2d_drv driver because of logging. The Samsung ID is SVE-2018-13035 (December 2018). Se detectó un problema en dispositivos móviles Samsung con versiones de software O(8.x) y P(9.0) (chipsets Exynos 9810). Se presenta una divulgación de información sobre un puntero de kernel en el controlador g2d_drv debido al registro. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •