Page 172 of 2341 results (0.014 seconds)

CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2021-25514

https://notcve.org/view.php?id=CVE-2021-25514

08 Dec 2021 — An improper intent redirection handling in Tags prior to SMR Dec-2021 Release 1 allows attackers to access sensitive information. Un manejo inapropiado de la redirección de la intención en Tags versiones anteriores a SMR Dec-2021 Release 1, permite a atacantes acceder a información confidencial • https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=12 •

CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0

CVE-2021-25513

https://notcve.org/view.php?id=CVE-2021-25513

08 Dec 2021 — An improper privilege management vulnerability in Apps Edge application prior to SMR Dec-2021 Release 1 allows unauthorized access to some device data on the lockscreen. Una vulnerabilidad de administración de privilegios inapropiada en la aplicación Apps Edge versiones anteriores a SMR Dec-2021 Release 1, permite el acceso no autorizado a algunos datos del dispositivo en la pantalla de bloqueo • https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=12 • CWE-269: Improper Privilege Management •

CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0

CVE-2021-25512

https://notcve.org/view.php?id=CVE-2021-25512

08 Dec 2021 — An improper validation vulnerability in telephony prior to SMR Dec-2021 Release 1 allows attackers to launch certain activities. Una vulnerabilidad de comprobación inapropiada en telephony versiones anteriores a SMR Dec-2021 Release 1, permite a atacantes iniciar determinadas actividades • https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=12 • CWE-20: Improper Input Validation •

CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0

CVE-2021-25511

https://notcve.org/view.php?id=CVE-2021-25511

08 Dec 2021 — An improper validation vulnerability in FilterProvider prior to SMR Dec-2021 Release 1 allows attackers to write arbitrary files via a path traversal vulnerability. Una vulnerabilidad de comprobación inapropiada en FilterProvider versiones anteriores a SMR Dec-2021 Release 1, permite a atacantes escribir archivos arbitrarios por medio de una vulnerabilidad de salto de ruta • https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=12 • CWE-20: Improper Input Validation CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0

CVE-2021-25510

https://notcve.org/view.php?id=CVE-2021-25510

08 Dec 2021 — An improper validation vulnerability in FilterProvider prior to SMR Dec-2021 Release 1 allows local arbitrary code execution. Una vulnerabilidad de comprobación inapropiada en FilterProvider versiones anteriores a SMR Dec-2021 Release 1, permite una ejecución local de código arbitrario • https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=12 • CWE-20: Improper Input Validation •

CVSS: 7.2EPSS: 0%CPEs: 15EXPL: 0

CVE-2021-0670

https://notcve.org/view.php?id=CVE-2021-0670

18 Nov 2021 — In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05654663; Issue ID: ALPS05654663. En apusys, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/November-2021 • CWE-416: Use After Free •

CVSS: 7.2EPSS: 0%CPEs: 25EXPL: 0

CVE-2021-0669

https://notcve.org/view.php?id=CVE-2021-0669

18 Nov 2021 — In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05681550; Issue ID: ALPS05681550. En apusys, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/November-2021 • CWE-416: Use After Free •

CVSS: 7.2EPSS: 0%CPEs: 20EXPL: 0

CVE-2021-0668

https://notcve.org/view.php?id=CVE-2021-0668

18 Nov 2021 — In apusys, there is a possible memory corruption due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05670521; Issue ID: ALPS05670521. En apusys, se presenta una posible corrupción de memoria debido a un manejo incorrecto de errores. • https://corp.mediatek.com/product-security-bulletin/November-2021 • CWE-755: Improper Handling of Exceptional Conditions •

CVSS: 6.7EPSS: 0%CPEs: 20EXPL: 0

CVE-2021-0667

https://notcve.org/view.php?id=CVE-2021-0667

18 Nov 2021 — In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05670581; Issue ID: ALPS05670581. En apusys, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/November-2021 • CWE-416: Use After Free •

CVSS: 4.4EPSS: 0%CPEs: 21EXPL: 0

CVE-2021-0666

https://notcve.org/view.php?id=CVE-2021-0666

18 Nov 2021 — In apusys, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05672086; Issue ID: ALPS05672086. En apusys, se presenta una posible lectura fuera de límites debido a una comprobación de límites incorrecta. • https://corp.mediatek.com/product-security-bulletin/November-2021 • CWE-125: Out-of-bounds Read •