CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-21419
https://notcve.org/view.php?id=CVE-2023-21419
09 Feb 2023 — An improper implementation logic in Secure Folder prior to SMR Jan-2023 Release 1 allows the Secure Folder container remain unlocked under certain condition. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=01 • CWE-287: Improper Authentication •
CVSS: 7.4EPSS: 0%CPEs: 113EXPL: 0CVE-2023-21441
https://notcve.org/view.php?id=CVE-2023-21441
09 Feb 2023 — Insufficient Verification of Data Authenticity vulnerability in Routine prior to versions 2.6.30.6 in Android Q(10), 3.1.21.10 in Android R(11) and 3.5.2.23 in Android S(12) allows local attacker to access protected files via unused code. • https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=02 • CWE-345: Insufficient Verification of Data Authenticity •
CVSS: 5.5EPSS: 0%CPEs: 128EXPL: 0CVE-2023-21425
https://notcve.org/view.php?id=CVE-2023-21425
09 Feb 2023 — Improper access control vulnerability in telecom application prior to SMR JAN-2023 Release 1 allows local attackers to get sensitive information. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=01 • CWE-287: Improper Authentication •
CVSS: 2.4EPSS: 0%CPEs: 63EXPL: 0CVE-2023-21438
https://notcve.org/view.php?id=CVE-2023-21438
09 Feb 2023 — Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access App preview protected by Secure Folder. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=02 • CWE-284: Improper Access Control CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 5.5EPSS: 0%CPEs: 128EXPL: 0CVE-2023-21437
https://notcve.org/view.php?id=CVE-2023-21437
09 Feb 2023 — Improper access control vulnerability in Phone application prior to SMR Feb-2023 Release 1 allows local attackers to access sensitive information via implicit broadcast. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=02 • CWE-287: Improper Authentication •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-47452
https://notcve.org/view.php?id=CVE-2022-47452
06 Feb 2023 — In gnss driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in wlan services. • https://www.unisoc.com/en_us/secy/announcementDetail/1621031430231134210 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-47451
https://notcve.org/view.php?id=CVE-2022-47451
06 Feb 2023 — In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services. • https://www.unisoc.com/en_us/secy/announcementDetail/1621031430231134210 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-47371
https://notcve.org/view.php?id=CVE-2022-47371
06 Feb 2023 — In bt driver, there is a thread competition leads to early release of resources to be accessed. This could lead to local denial of service in kernel. • https://www.unisoc.com/en_us/secy/announcementDetail/1621031430231134210 • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-47370
https://notcve.org/view.php?id=CVE-2022-47370
06 Feb 2023 — In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services. • https://www.unisoc.com/en_us/secy/announcementDetail/1621031430231134210 •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-47369
https://notcve.org/view.php?id=CVE-2022-47369
06 Feb 2023 — In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services. • https://www.unisoc.com/en_us/secy/announcementDetail/1621031430231134210 • CWE-787: Out-of-bounds Write •