CVSS: 7.7EPSS: 0%CPEs: 60EXPL: 0CVE-2023-30643
https://notcve.org/view.php?id=CVE-2023-30643
Missing authentication vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to delete arbitrary non-preloaded applications. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=07 • CWE-306: Missing Authentication for Critical Function •
CVSS: 6.2EPSS: 0%CPEs: 29EXPL: 0CVE-2023-30642
https://notcve.org/view.php?id=CVE-2023-30642
Improper privilege management vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to call privilege function. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=07 • CWE-269: Improper Privilege Management •
CVSS: 4.3EPSS: 0%CPEs: 60EXPL: 0CVE-2023-30640
https://notcve.org/view.php?id=CVE-2023-30640
Improper access control vulnerability in PersonaManagerService prior to SMR Jul-2023 Release 1 allows local attackers to change confiugration. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=07 •
CVSS: 4.4EPSS: 0%CPEs: 9EXPL: 0CVE-2023-20748
https://notcve.org/view.php?id=CVE-2023-20748
In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07536951; Issue ID: ALPS07536951. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-125: Out-of-bounds Read •
CVSS: 6.7EPSS: 0%CPEs: 39EXPL: 0CVE-2023-20775
https://notcve.org/view.php?id=CVE-2023-20775
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07978760; Issue ID: ALPS07363410. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-787: Out-of-bounds Write •