CVSS: 4.3EPSS: 0%CPEs: 10EXPL: 0CVE-2023-36482
https://notcve.org/view.php?id=CVE-2023-36482
An issue was discovered in Samsung NFC S3NRN4V, S3NSN4V, S3NSEN4, SEN82AB, and S3NRN82. A buffer copy without checking its input size can cause an NFC service restart. • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.3EPSS: 0%CPEs: 66EXPL: 1CVE-2023-38523
https://notcve.org/view.php?id=CVE-2023-38523
The web interface on multiple Samsung Harman AMX N-Series devices allows directory listing for the /tmp/ directory, without authentication, exposing sensitive information such as the command history and screenshot of the file being processed. This affects N-Series N1115 Wallplate Video Encoder before 1.15.61, N-Series N1x22A Video Encoder/Decoder before 1.15.61, N-Series N1x33A Video Encoder/Decoder before 1.15.61, N-Series N1x33 Video Encoder/Decoder before 1.15.61, N-Series N2x35 Video Encoder/Decoder before 1.15.61, N-Series N2x35A Video Encoder/Decoder before 1.15.61, N-Series N2xx2 Video Encoder/Decoder before 1.15.61, N-Series N2xx2A Video Encoder/Decoder before 1.15.61, N-Series N3000 Video Encoder/Decoder before 2.12.105, and N-Series N4321 Audio Transceiver before 1.00.06. • https://help.harmanpro.com/n1115-svsi-firmware https://help.harmanpro.com/n1x22a-updater https://help.harmanpro.com/n1x33-updater https://help.harmanpro.com/n1x33a-updater https://help.harmanpro.com/n2x35-updater-hotfix https://help.harmanpro.com/n2x35a-updater-hotfix https://help.harmanpro.com/n2xx2-updater-hotfix https://help.harmanpro.com/n2xx2a-updater https://help.harmanpro.com/n3k-updater-hotfix https://help.harmanpro.com/svsi-n4321-firmware https://wiki.notveg.ninja/blog/CVE-202 • CWE-306: Missing Authentication for Critical Function •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-30678
https://notcve.org/view.php?id=CVE-2023-30678
Potential zip path traversal vulnerability in Calendar application prior to version 12.4.07.15 in Android 13 allows attackers to write arbitrary file. • https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=07 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-30677
https://notcve.org/view.php?id=CVE-2023-30677
Improper access control vulnerability in Samsung Pass prior to version 4.2.03.1 allows physical attackers to access data of Samsung Pass on a certain state of an unlocked device. Una vulnerabilidad de control de acceso inadecuado en Samsung Pass anterior a la versión 4.2.03.1 permite a los atacantes físicamente acceder a los datos de Samsung Pass en un determinado estado de un dispositivo desbloqueado. • https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=07 •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0CVE-2023-30676
https://notcve.org/view.php?id=CVE-2023-30676
Improper access control vulnerability in Samsung Pass prior to version 4.2.03.1 allows physical attackers to access data of Samsung Pass. Una vulnerabilidad de control de acceso inadecuado en Samsung Pass anterior a la versión 4.2.03.1 permite a los atacantes físicamente acceder a los datos de Samsung Pass. • https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=07 •