CVSS: 8.1EPSS: 0%CPEs: 4EXPL: 0CVE-2018-21040
https://notcve.org/view.php?id=CVE-2018-21040
An issue was discovered on Samsung mobile devices with O(8.x) and P(9.0) (Exynos 9810 chipsets) software. There is a race condition with a resultant use-after-free in the g2d driver. The Samsung ID is SVE-2018-12959 (December 2018). Se detectó un problema en dispositivos móviles Samsung con versiones de software O(8.x) y P(9.0) (chipsets Exynos 9810). Se presenta una condición de carrera con un uso de la memoria previamente liberada resultante en el controlador g2d. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2017-18675
https://notcve.org/view.php?id=CVE-2017-18675
An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) (Exynos7420 or Exynox8890 chipsets) software. The Camera application can leak uninitialized memory via ion. The Samsung ID is SVE-2016-6989 (April 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software M(6.0) y N(7.x) (Exynos7420 o Exynox8890). La aplicación Camera puede filtrar memoria no inicializada por medio de ion. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2017-18681
https://notcve.org/view.php?id=CVE-2017-18681
An issue was discovered on Samsung Galaxy S5 mobile devices with software through 2016-12-20 (Qualcomm AP chipsets). There are multiple buffer overflows in the bootloader. The Samsung ID is SVE-2016-7930 (March 2017). Se detectó un problema en dispositivos móviles Samsung Galaxy S5 con versión de software hasta el 20-12-2016 (chipsets Qualcomm AP). Se presentan múltiples desbordamientos de búfer en el cargador de arranque. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2017-18689
https://notcve.org/view.php?id=CVE-2017-18689
An issue was discovered on Samsung mobile devices with M(6.0) and N(7.0) (Exynos5433, Exynos7420, or Exynos7870 chipsets) software. An attacker can bypass a ko (aka Kernel Module) signature by modifying the count of kernel modules. The Samsung ID is SVE-2016-7466 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software M(6.0) y N(7.0) (Exynos5433, Exynos7420 o Exynos7870). Un atacante puede omitir una firma ko (también se conoce como Módulo Kernel) al modificar el conteo de módulos del kernel. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-354: Improper Validation of Integrity Check Value •
CVSS: 9.8EPSS: 0%CPEs: 13EXPL: 0CVE-2017-18690
https://notcve.org/view.php?id=CVE-2017-18690
An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) (Exynos54xx, Exynos7420, Exynos8890, or Exynos8895 chipsets) software. There is a buffer overflow in the sensor hub. The Samsung ID is SVE-2016-7484 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4), L(5.0 / 5.1), M(6.0) y N(7.0) (Exynos54xx, Exynos7420, Exynos8890 o Exynos8895). Se presenta un desbordamiento del búfer en el sensor hub. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •