CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0612
https://notcve.org/view.php?id=CVE-2021-0612
27 Sep 2021 — In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425834. En m4u, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0611
https://notcve.org/view.php?id=CVE-2021-0611
27 Sep 2021 — In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425810. En m4u, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0610
https://notcve.org/view.php?id=CVE-2021-0610
27 Sep 2021 — In memory management driver, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05411456. En memory management driver, se presenta una posible corrupción de memoria debido a un desbordamiento de enteros. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0425
https://notcve.org/view.php?id=CVE-2021-0425
27 Sep 2021 — In memory management driver, there is a possible side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05400059. En memory management driver, se presenta una posible divulgación de información de canal lateral. • https://corp.mediatek.com/product-security-bulletin/September-2021 •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0424
https://notcve.org/view.php?id=CVE-2021-0424
27 Sep 2021 — In memory management driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05393787. En memory management driver, es posible que se produzca un bloqueo del sistema debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0423
https://notcve.org/view.php?id=CVE-2021-0423
27 Sep 2021 — In memory management driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05385714. En memory management driver, se presenta una posible divulgación de información debido a datos no inicializados. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-665: Improper Initialization •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0422
https://notcve.org/view.php?id=CVE-2021-0422
27 Sep 2021 — In memory management driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05381071. En memory management driver, es posible que se produzca un bloqueo del sistema debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0421
https://notcve.org/view.php?id=CVE-2021-0421
27 Sep 2021 — In memory management driver, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05381235. En memory management driver, se presenta una posible divulgación de información debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-25462
https://notcve.org/view.php?id=CVE-2021-25462
09 Sep 2021 — NULL pointer dereference vulnerability in NPU driver prior to SMR Sep-2021 Release 1 allows attackers to cause memory corruption. Una vulnerabilidad de desreferencia de puntero NULL en NPU driver anterior a versión SMR Sep-2021 Release 1, permite a atacantes causar una corrupción de memoria • https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=9 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-25460
https://notcve.org/view.php?id=CVE-2021-25460
09 Sep 2021 — An improper access control vulnerability in sspExit() in BlockchainTZService prior to SMR Sep-2021 Release 1 allows attackers to terminate BlockchainTZService. Una vulnerabilidad de control de acceso inapropiado en la función sspExit() en BlockchainTZService anterior a versión SMR Sep-2021 Release 1, permite a atacantes terminar BlockchainTZService • https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=9 • CWE-285: Improper Authorization •