CVSS: 8.5EPSS: 0%CPEs: 24EXPL: 0CVE-2023-21491
https://notcve.org/view.php?id=CVE-2023-21491
Improper access control vulnerability in ThemeManager prior to SMR May-2023 Release 1 allows local attackers to write arbitrary files with system privilege. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05 • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2023-21498
https://notcve.org/view.php?id=CVE-2023-21498
Improper input validation vulnerability in setPartnerTAInfo in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to overwrite the trustlet memory. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 51EXPL: 0CVE-2023-21488
https://notcve.org/view.php?id=CVE-2023-21488
Improper access control vulnerablility in Tips prior to SMR May-2023 Release 1 allows local attackers to launch arbitrary activity in Tips. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05 • CWE-284: Improper Access Control •
CVSS: 5.3EPSS: 0%CPEs: 51EXPL: 0CVE-2023-21486
https://notcve.org/view.php?id=CVE-2023-21486
Improper export of android application components vulnerability in ImagePreviewActivity in Call Settings to SMR May-2023 Release 1 allows physical attackers to access some media data stored in sandbox. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05 • CWE-926: Improper Export of Android Application Components •
CVSS: 6.8EPSS: 0%CPEs: 50EXPL: 0CVE-2023-21493
https://notcve.org/view.php?id=CVE-2023-21493
Improper access control vulnerability in SemShareFileProvider prior to SMR May-2023 Release 1 allows local attackers to access protected data. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05 • CWE-284: Improper Access Control •