CVSS: 10.0EPSS: 0%CPEs: 7EXPL: 0CVE-2019-20621
https://notcve.org/view.php?id=CVE-2019-20621
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) (Exynos chipsets) software. There is a baseband heap overflow. The Samsung ID is SVE-2018-13187 (February 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.x), O(8.x) y P(9.0) (chipsets Exynos). Se presenta un desbordamiento de pila (heap) de la banda base. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 6EXPL: 0CVE-2019-20616
https://notcve.org/view.php?id=CVE-2019-20616
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.x) software. Gallery leaks a thumbnail of Private Mode content. The Samsung ID is SVE-2018-13563 (March 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.x) y O(8.x). Gallery filtra una miniatura del contenido del Private Mode. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.6EPSS: 0%CPEs: 6EXPL: 0CVE-2019-20615
https://notcve.org/view.php?id=CVE-2019-20615
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.x) software. Attackers can bypass Factory Reset Protection (FRP) via SVoice T&C. The Samsung ID is SVE-2018-13547 (March 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.x) y O(8.x). Los atacantes pueden omitir la Factory Reset Protection (FRP) por medio de SVoice T&C. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2019-20614
https://notcve.org/view.php?id=CVE-2019-20614
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) software. Allshare allows attackers to access sensitive information. The Samsung ID is SVE-2018-13453 (March 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.x), O(8.x) y P(9.0). Allshare permite a atacantes acceder a información confidencial. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-862: Missing Authorization •
CVSS: 8.1EPSS: 0%CPEs: 6EXPL: 0CVE-2019-20613
https://notcve.org/view.php?id=CVE-2019-20613
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.x) software. There is time-based SQL injection in Contacts. The Samsung ID is SVE-2018-13452 (March 2019). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.x) y O(8.x). Se presenta una inyección SQL basada en tiempo en Contacts. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •