CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2019-20595
https://notcve.org/view.php?id=CVE-2019-20595
An issue was discovered on Samsung mobile devices with P(9.0) software. Quick Panel allows enabling or disabling the Bluetooth stack without authentication. The Samsung ID is SVE-2019-14545 (July 2019). Se detectó un problema en dispositivos móviles Samsung con versión de software P(9.0). Quick Panel permite habilitar o deshabilitar la pila de Bluetooth sin autenticación. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-306: Missing Authentication for Critical Function •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-20594
https://notcve.org/view.php?id=CVE-2019-20594
An issue was discovered on Samsung mobile devices with O(8.1) and P(9.0) (Exynos chipsets) software. A heap overflow exists in the bootloader. The Samsung ID is SVE-2019-14371 (July 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software O(8.1) y P(9.0) (chipsets Exynos). Se presenta un desbordamiento de pila (heap) en el cargador de arranque. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2019-20592
https://notcve.org/view.php?id=CVE-2019-20592
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) software. There is local SQL injection in the Story Video Editor Content Provider. The Samsung ID is SVE-2019-14062 (July 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.x), O(8.x) y P(9.0). Se presenta una inyección SQL local en el Story Video Editor Content Provider. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2019-20591
https://notcve.org/view.php?id=CVE-2019-20591
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) software. There is local SQL injection in the Gear VR Service Content Provider. The Samsung ID is SVE-2019-14058 (July 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.x), O(8.x) y P(9.0). Se presenta una inyección SQL local en el Gear VR Service Content Provider. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2019-20590
https://notcve.org/view.php?id=CVE-2019-20590
An issue was discovered on Samsung mobile devices with O(8.x) (Qualcomm chipsets) software. There is an integer underflow in the Secure Storage Trustlet. The Samsung ID is SVE-2019-13952 (July 2019). Se detectó un problema en dispositivos móviles Samsung con versión de software O(8.x) (chipsets Qualcomm). Se presenta un desbordamiento de enteros en el Secure Storage Trustlet. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-191: Integer Underflow (Wrap or Wraparound) •