Page 27 of 1559 results (0.008 seconds)

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

An issue was discovered on LG mobile devices with Android OS software before 2020-06-01. Local users can cause a denial of service because checking of the userdata partition is mishandled. The LG ID is LVE-SMP-200014 (June 2020). Se detectó un problema en los dispositivos móviles LG con software de Sistema Operativo Android antes del 01-06-2020. Los usuarios locales pueden causar una denegación de servicio porque la comprobación de la partición de los datos de usuario se maneja inapropiadamente. • https://lgsecurity.lge.com •

CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 0

An issue was discovered on Samsung mobile devices with KK(4.4) and later software through 2015-06-16. In some cases, HTTP is used for an Inputmethod, rather than HTTPS. A man-in-the-middle attacker can modify the client-server data stream to insert directory traversal sequences into an extracted file path. The Samsung ID is SVE-2015-4363 (November 2015). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4) y posteriores hasta el 16-06-2015. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0

An issue was discovered on Samsung mobile devices with JBP(4.3) and KK(4.4.2) software. Because the READ_LOGS permission is mishandled, sensitive information is disclosed in a world-readable copy of the log file if the error message is "Unhandled exception in Dalvik VM," "Application not responding ANR event," or "Crash on an application's native code." The Samsung ID is SVE-2015-2885 (October 2015). Se detectó un problema en dispositivos móviles Samsung con versiones de software JBP(4.3) y KK(4.4.2). Debido a que el permiso READ_LOGS se maneja inapropiadamente, la información confidencial es divulgada en una copia de tipo world-readable del archivo de registro si el mensaje de error es "Unhandled exception in Dalvik VM," "Application not responding ANR event," o "Crash on an application's native code." • https://security.samsungmobile.com/securityUpdate.smsb • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0

An issue was discovered on Samsung mobile devices with KK(4.4) and later software through 2015-05-13. There is a buffer overflow in datablock_write because the amount of received data is not validated. The Samsung ID is SVE-2015-4018 (December 2015). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4) y posteriores hasta 13-05-2015. Se presenta un desbordamiento del búfer en datablock_write porque la cantidad de datos recibidos no es validada. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 9.8EPSS: 0%CPEs: 23EXPL: 0

An issue was discovered on Samsung mobile devices with M(6.0), N(7.x) and O(8.x) except exynos9610/9820 in all Platforms, M(6.0) except MSM8909 SC77xx/9830 exynos3470/5420, N(7.0) except MSM8939, N(7.1) except MSM8996 SDM6xx/M6737T software. There is an integer underflow with a resultant buffer overflow in eCryptFS. The Samsung ID is SVE-2017-11857 (September 2018). Se detectó un problema en dispositivos móviles Samsung con versiones de software M(6.0), N(7.x) y O(8.x) excepto exynos9610/9820 en todas las plataformas, M(6.0) excepto MSM8909 SC77xx/9830 exynos3470/5420, N( 7.0) excepto MSM8939, N(7.1) excepto el software MSM8996 SDM6xx/M6737T. Se presenta un desbordamiento de enteros con un desbordamiento de búfer resultante en eCryptFS. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-190: Integer Overflow or Wraparound •