CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2016-7988
https://notcve.org/view.php?id=CVE-2016-7988
On Samsung Galaxy S4 through S7 devices, absence of permissions on the BroadcastReceiver responsible for handling the com.[Samsung].android.intent.action.SET_WIFI intent leads to unsolicited configuration messages being handled by wifi-service.jar within the Android Framework, a subset of SVE-2016-6542. En dispositivos Samsung Galaxy S4 hasta la versión S7, la ausencia de permisos en el responsable BroadcastReceiver de manejar los intentos com.[Samsung].android.intent.action.SET_WIFI lleva a que los mensajes de configuración no solicitados sean manejados por wifi-service.jar dentro del Android Framework, un subconjunto de SVE-2016-6542. • http://security.samsungmobile.com/smrupdate.html#SMR-AUG-2016 http://www.securityfocus.com/bid/94081 • CWE-275: Permission Issues CWE-388: 7PK - Errors •
CVSS: 8.8EPSS: 3%CPEs: 1EXPL: 1CVE-2015-7893 – Samsung SecEmailUI - Script Injection
https://notcve.org/view.php?id=CVE-2015-7893
SecEmailUI in Samsung Galaxy S6 does not sanitize HTML email content, allows remote attackers to execute arbitrary JavaScript. SecEmailUI en Samsung Galaxy S6 no desinfecta el contenido de correo electrónico HTML, permite a los atacantes remotos ejecutar JavaScript arbitrario. The default Samsung email client's email viewer and composer (implemented in SecEmailUI.apk) doesn't sanitize HTML email content for scripts before rendering the data inside a WebView. This allows an attacker to execute arbitrary JavaScript when a user views a HTML email which contains HTML script tags or other events. • https://www.exploit-db.com/exploits/38554 http://packetstormsecurity.com/files/135643/Samsung-SecEmailUI-Script-Injection.html http://www.securityfocus.com/bid/77431 https://bugs.chromium.org/p/project-zero/issues/detail?id=494&q=samsung&redir=1 https://googleprojectzero.blogspot.ie/2015/11/hack-galaxy-hunting-bugs-in-samsung.html • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2015-7898 – Samsung Galaxy S6 Samsung Gallery - GIF Parsing Crash
https://notcve.org/view.php?id=CVE-2015-7898
Samsung Gallery in the Samsung Galaxy S6 allows local users to cause a denial of service (process crash). Samsung Gallery de Samsusng Galaxy S6 permite a los usuarios locales provocar una denegación de servicio (caída del proceso). Samsung Galaxy S6 suffers from a gif parsing crash in Samsung Gallery. • https://www.exploit-db.com/exploits/38610 http://packetstormsecurity.com/files/134951/Samsung-Galaxy-S6-Samsung-Gallery-GIF-Parsing-Crash.html http://www.securityfocus.com/bid/77430 https://bugs.chromium.org/p/project-zero/issues/detail?id=500&redir=1 • CWE-284: Improper Access Control •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2015-7895 – Samsung Galaxy S6 Samsung Gallery - Bitmap Decoding Crash
https://notcve.org/view.php?id=CVE-2015-7895
Samsung Gallery on the Samsung Galaxy S6 allows local users to cause a denial of service (process crash). Samsung Gallery de Samsusng Galaxy S6 permite a los usuarios locales provocar una denegación de servicio (caída del proceso). Samsung Galaxy S6 suffers from a bitmap decoding crash in Samsung Gallery. • https://www.exploit-db.com/exploits/38613 http://packetstormsecurity.com/files/134950/Samsung-Galaxy-S6-Samsung-Gallery-Bitmap-Decoding-Crash.html http://www.securityfocus.com/bid/77429 https://bugs.chromium.org/p/project-zero/issues/detail?id=497&redir=1 https://googleprojectzero.blogspot.ie/2015/11/hack-galaxy-hunting-bugs-in-samsung.html • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 7%CPEs: 1EXPL: 1CVE-2015-7897 – Samsung Galaxy S6 - android.media.process Face Recognition Memory Corruption
https://notcve.org/view.php?id=CVE-2015-7897
The media scanning functionality in the face recognition library in android.media.process in Samsung Galaxy S6 Edge before G925VVRU4B0G9 allows remote attackers to gain privileges or cause a denial of service (memory corruption) via a crafted BMP image file. La funcionalidad media scanning en la librería reconocimiento facial en android.media.process en Samsung Galaxy S6 Edge en versiones anteriores a G925VVRU4B0G9 permite a atacantes remotos obtener privilegios o causar una denegación de servicios (corrupción de memoria) a través de un archivo de imagen BMP manipulado. • https://www.exploit-db.com/exploits/38611 http://googleprojectzero.blogspot.com/2015/11/hack-galaxy-hunting-bugs-in-samsung.html http://packetstormsecurity.com/files/134199/Samsung-Galaxy-S6-Android.media.process-Face-Recognition-Memory-Corruption.html https://code.google.com/p/google-security-research/issues/detail?id=499&q=samsung • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •