CVSS: 5.3EPSS: 0%CPEs: 5EXPL: 0CVE-2017-18687
https://notcve.org/view.php?id=CVE-2017-18687
07 Apr 2020 — An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) software. An attacker can obtain the full pathnames of sdcard files by reading the system protected log upon reception of a certain intent. The Samsung ID is SVE-2016-7183 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4), L(5.0 / 5.1), M(6.0) y N(7.0). Un atacante puede obtener los nombres completos de las rutas de los archivos sdcard mediante la lectura del ... • https://security.samsungmobile.com/securityUpdate.smsb • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2017-18688
https://notcve.org/view.php?id=CVE-2017-18688
07 Apr 2020 — An issue was discovered on Samsung mobile devices with L(5.1), M(6.0), and N(7.0) software. There is an information disclosure (of memory locations outside a buffer) via /dev/dsm_ctrl_dev. The Samsung ID is SVE-2016-7340 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software L(5.1), M(6.0) y N(7.0). Se presenta una divulgación de información (de ubicaciones de memoria fuera de un búfer) por medio de /dev/dsm_ctrl_dev. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2017-18689
https://notcve.org/view.php?id=CVE-2017-18689
07 Apr 2020 — An issue was discovered on Samsung mobile devices with M(6.0) and N(7.0) (Exynos5433, Exynos7420, or Exynos7870 chipsets) software. An attacker can bypass a ko (aka Kernel Module) signature by modifying the count of kernel modules. The Samsung ID is SVE-2016-7466 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software M(6.0) y N(7.0) (Exynos5433, Exynos7420 o Exynos7870). Un atacante puede omitir una firma ko (también se conoce como Módulo Kernel) al modificar el con... • https://security.samsungmobile.com/securityUpdate.smsb • CWE-354: Improper Validation of Integrity Check Value •
CVSS: 9.8EPSS: 0%CPEs: 13EXPL: 0CVE-2017-18690
https://notcve.org/view.php?id=CVE-2017-18690
07 Apr 2020 — An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) (Exynos54xx, Exynos7420, Exynos8890, or Exynos8895 chipsets) software. There is a buffer overflow in the sensor hub. The Samsung ID is SVE-2016-7484 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4), L(5.0 / 5.1), M(6.0) y N(7.0) (Exynos54xx, Exynos7420, Exynos8890 o Exynos8895). Se presenta un desbordamiento del búfer en el sensor hub. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-18691
https://notcve.org/view.php?id=CVE-2017-18691
07 Apr 2020 — An issue was discovered on Samsung mobile devices with M(6.0) and N(7.0) (Exynos8890 chipsets) software. There are multiple Buffer Overflows in TSP sysfs cmd_store. The Samsung ID is SVE-2016-7500 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software M(6.0) y N(7.0) (chipsets Exynos8890). Se presentan múltiples desbordamientos de búfer en TSP sysfs cmd_store. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.1EPSS: 0%CPEs: 8EXPL: 0CVE-2017-18692
https://notcve.org/view.php?id=CVE-2017-18692
07 Apr 2020 — An issue was discovered on Samsung mobile devices with M(6.0) and N(7.0) (MSM8939, MSM8996, MSM8998, Exynos7580, Exynos8890, or Exynos8895 chipsets) software. There is a race condition, with a resultant buffer overflow, in the sec_ts touchscreen sysfs interface. The Samsung ID is SVE-2016-7501 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software M(6.0) y N(7.0) (MSM8939, MSM8996, MSM8998, Exynos7580, Exynos8890 o Exynos8895). Se presenta una condición de carrera, ... • https://security.samsungmobile.com/securityUpdate.smsb • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2017-18693
https://notcve.org/view.php?id=CVE-2017-18693
07 Apr 2020 — An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) software. There is a buffer overflow in the fps sysfs entry. The Samsung ID is SVE-2016-7510 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4), L(5.0/5.1), M(6.0) y N(7.0). Se presenta un desbordamiento de búfer en la entrada fps sysfs. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2017-18695
https://notcve.org/view.php?id=CVE-2017-18695
07 Apr 2020 — An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) software. Attackers (who control a certain subdomain) can discover a user's credentials, during an email account login, via an EAS autodiscover packet. The Samsung ID is SVE-2016-7654 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4), L(5.0/5.1), M(6.0), y N(7.0). Los atacantes (que controlan un determinado subdominio) pueden detectar las credenciales de un us... • https://security.samsungmobile.com/securityUpdate.smsb • CWE-522: Insufficiently Protected Credentials •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2017-18696
https://notcve.org/view.php?id=CVE-2017-18696
07 Apr 2020 — An issue was discovered on Samsung mobile devices with M(6.0) and N(7.0) (Exynos7420, Exynos8890, or MSM8996 chipsets) software. RKP allows memory corruption. The Samsung ID is SVE-2016-7897 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software M(6.0) y N(7.0) (Exynos7420, Exynos8890 o MSM8996). RKP permite una corrupción de la memoria. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2016-11026
https://notcve.org/view.php?id=CVE-2016-11026
07 Apr 2020 — An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. BootReceiver allows attackers to trigger a system crash because of incorrect exception handling. The Samsung ID is SVE-2016-7118 (December 2016). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4), L(5.0/5.1) y M(6.0). BootReceiver permite a atacantes activar un bloqueo del sistema debido al manejo incorrecto de excepciones. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-755: Improper Handling of Exceptional Conditions •