CVSS: 7.8EPSS: 0%CPEs: 66EXPL: 0CVE-2023-30687
https://notcve.org/view.php?id=CVE-2023-30687
10 Aug 2023 — Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. Escritura fuera de límites en RmtUimApdu de libsec-ril anterior a SMR Aug-2023 Release 1 que permite a un atacante local ejecutar código arbitrario. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=08 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 66EXPL: 0CVE-2023-30686
https://notcve.org/view.php?id=CVE-2023-30686
10 Aug 2023 — Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. Escritura fuera de límites en ReqDataRaw de libsec-ri anterior a SMR Aug-2023 Release 1 que permite a un atacante local ejecutar código arbitrario. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=08 • CWE-787: Out-of-bounds Write •
CVSS: 4.3EPSS: 0%CPEs: 66EXPL: 0CVE-2023-30685
https://notcve.org/view.php?id=CVE-2023-30685
10 Aug 2023 — Improper access control vulnerability in Telecom prior to SMR Aug-2023 Release 1 allows local attakcers to change TTY mode. La vulnerabilidad de control de acceso inadecuado en Telecom anterior a SMR Aug-2023 Release 1 permite a los atacantes locales cambiar el modo TTY. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=08 •
CVSS: 7.8EPSS: 0%CPEs: 66EXPL: 0CVE-2023-30681
https://notcve.org/view.php?id=CVE-2023-30681
10 Aug 2023 — An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write. Vulnerabilidad de validación de entrada inadecuada en la función de inicialización de HAL VaultKeeper anterior a SMR Aug-2023 Release 1 permite a un atacante provocar una escritura fuera de los límites. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=08 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 66EXPL: 0CVE-2023-30679
https://notcve.org/view.php?id=CVE-2023-30679
10 Aug 2023 — Improper access control in HDCP trustlet prior to SMR Aug-2023 Release 1 allows local attackers to execute arbitrary code. Control de acceso inadecuado en HDCP trustlet anterior a SMR Aug-2023 Release 1 que permite a los atacantes locales ejecutar código arbitrario. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=08 •
CVSS: 6.7EPSS: 0%CPEs: 66EXPL: 0CVE-2023-30654
https://notcve.org/view.php?id=CVE-2023-30654
10 Aug 2023 — Improper access control vulnerability in SLocationService prior to SMR Aug-2023 Release 1 allows local attacker to update fake location. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=08 •
CVSS: 6.7EPSS: 0%CPEs: 55EXPL: 0CVE-2023-20811
https://notcve.org/view.php?id=CVE-2023-20811
07 Aug 2023 — In IOMMU, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03692061; Issue ID: DTV03692061. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 55EXPL: 0CVE-2023-20810
https://notcve.org/view.php?id=CVE-2023-20810
07 Aug 2023 — In IOMMU, there is a possible information disclosure due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03692061; Issue ID: DTV03692061. • https://corp.mediatek.com/product-security-bulletin/August-2023 •
CVSS: 6.7EPSS: 0%CPEs: 54EXPL: 0CVE-2023-20809
https://notcve.org/view.php?id=CVE-2023-20809
07 Aug 2023 — In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03751198; Issue ID: DTV03751198. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 6EXPL: 0CVE-2023-20808
https://notcve.org/view.php?id=CVE-2023-20808
07 Aug 2023 — In OPTEE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03645895; Issue ID: DTV03645895. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •