CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2016-11027
https://notcve.org/view.php?id=CVE-2016-11027
07 Apr 2020 — An issue was discovered on Samsung mobile devices with M(6.0) software. In the Shade Locked state, a physically proximate attacker can read notifications on the lock screen. The Samsung ID is SVE-2016-7132 (December 2016). Se detectó un problema en dispositivos móviles Samsung con versión de software M(6.0). En el estado Shade Locked, un atacante físicamente próximo puede leer notificaciones en la pantalla de bloqueo. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2016-11029
https://notcve.org/view.php?id=CVE-2016-11029
07 Apr 2020 — An issue was discovered on Samsung mobile devices with L(5.0/5.1), M(6.0), and N(7.0) software. Attackers can read the password of the Mobile Hotspot in the log because of an unprotected intent. The Samsung ID is SVE-2016-7301 (December 2016). Se detectó un problema en dispositivos móviles Samsung con versiones de software L(5.0/5.1), M(6.0) y N(7.0). Los atacantes pueden leer la contraseña del Mobile Hotspot en el registro debido a un intent desprotegido. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-522: Insufficiently Protected Credentials •
CVSS: 8.1EPSS: 0%CPEs: 4EXPL: 0CVE-2016-11030
https://notcve.org/view.php?id=CVE-2016-11030
07 Apr 2020 — An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) (with Hrm sensor support) software. The sysfs of the MAX86902 sensor driver does not prevent concurrent access, leading to a race condition and resultant heap-based buffer overflow. The Samsung ID is SVE-2016-7341 (December 2016). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4), L(5.0/5.1) y M(6.0) (con soporte de sensor Hrm). El sysfs del controlador del sensor MAX86902 no impide ... • https://security.samsungmobile.com/securityUpdate.smsb • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2016-11031
https://notcve.org/view.php?id=CVE-2016-11031
07 Apr 2020 — An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. AntService allows a system_server crash and reboot. The Samsung ID is SVE-2016-7044 (November 2016). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4), L(5.0/5.1) y M(6.0). AntService permite un bloqueo y reinicio de system_server. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-20: Improper Input Validation •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-11032
https://notcve.org/view.php?id=CVE-2016-11032
07 Apr 2020 — An issue was discovered on Samsung mobile devices with M(6.0) software. An attacker can disable all Sound functionality by broadcasting an unprotected intent. The Samsung IDs are SVE-2016-7179 and SVE-2016-7182 (November 2016). Se detectó un problema en dispositivos móviles Samsung con versión de software M(6.0). Un atacante puede deshabilitar toda la funcionalidad Sound al transmitir un intent desprotegido. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-11033
https://notcve.org/view.php?id=CVE-2016-11033
07 Apr 2020 — An issue was discovered on Samsung mobile devices with M(6.0) software. There is a heap-based buffer overflow in tlc_server. The Samsung IDs are SVE-2016-7220 and SVE-2016-7225 (November 2016). Se detectó un problema en dispositivos móviles Samsung con versión de software M(6.0). Se presenta un desbordamiento de búfer en la región heap de la memoria en tlc_server. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-787: Out-of-bounds Write •
CVSS: 7.1EPSS: 0%CPEs: 3EXPL: 0CVE-2016-11034
https://notcve.org/view.php?id=CVE-2016-11034
07 Apr 2020 — An issue was discovered on Samsung mobile devices with L(5.0/5.1) and M(6.0) software. The decode function in Qjpeg in Qt 5.7 allows attackers to trigger a system crash via a malformed image. The Samsung ID is SVE-2016-6560 (October 2016). Se detectó un problema en dispositivos móviles Samsung con versiones de software L(5.0/5.1) y M(6.0). La función decode en Qjpeg en Qt versión 5.7, permite a atacantes activar un bloqueo del sistema por medio de una imagen malformada. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-11036
https://notcve.org/view.php?id=CVE-2016-11036
07 Apr 2020 — An issue was discovered on Samsung mobile devices with M(6.0) software. There is a Factory Reset Protection (FRP) bypass. The Samsung ID is SVE-2016-6008 (August 2016). Se detectó un problema en dispositivos móviles Samsung con versión de software M(6.0). Se presenta una omisión de Factory Reset Protection (FRP). • https://security.samsungmobile.com/securityUpdate.smsb • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2016-11039
https://notcve.org/view.php?id=CVE-2016-11039
07 Apr 2020 — An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) (AP + CP MDM9x35, or Qualcomm Onechip) software. There is a NULL pointer dereference issue in the IPC socket code. The Samsung ID is SVE-2016-5980 (July 2016). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4), L(5.0/5.1) y M(6.0) (AP + CP MDM9x35 o Qualcomm Onechip). Se presenta un problema de desreferencia del puntero NULL en el código de socket IPC. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-476: NULL Pointer Dereference •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2016-11040
https://notcve.org/view.php?id=CVE-2016-11040
07 Apr 2020 — An issue was discovered on Samsung mobile devices with L(5.0/5.1) (with USB OTG MyFile2014_L_ESS support) software. There is a Factory Reset Protection (FRP) bypass. The Samsung ID is SVE-2015-5068 (June 2016). Se detectó un problema en dispositivos móviles Samsung con versión de software L(5.0/5.1) (con soporte OTG MyFile2014_L_ESS del USB). Se presenta una omisión de Factory Reset Protection (FRP). • https://security.samsungmobile.com/securityUpdate.smsb • CWE-20: Improper Input Validation •