CVSS: 3.3EPSS: 0%CPEs: 48EXPL: 0CVE-2023-21452
https://notcve.org/view.php?id=CVE-2023-21452
Improper usage of implicit intent in Bluetooth prior to SMR Mar-2023 Release 1 allows attacker to get MAC address of connected device. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=03 • CWE-285: Improper Authorization •
CVSS: 5.5EPSS: 0%CPEs: 48EXPL: 0CVE-2023-21461
https://notcve.org/view.php?id=CVE-2023-21461
Improper authorization vulnerability in AutoPowerOnOffConfirmDialog in Settings prior to SMR Mar-2023 Release 1 allows local attacker to turn device off via unprotected activity. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=03 • CWE-285: Improper Authorization •
CVSS: 9.0EPSS: 0%CPEs: 48EXPL: 0CVE-2023-21456
https://notcve.org/view.php?id=CVE-2023-21456
Path traversal vulnerability in Galaxy Themes Service prior to SMR Mar-2023 Release 1 allows attacker to access arbitrary file with system uid. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=03 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0CVE-2023-21455
https://notcve.org/view.php?id=CVE-2023-21455
Improper authorization implementation in Exynos baseband prior to SMR Mar-2023 Release 1 allows incorrect handling of unencrypted message. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=03 • CWE-287: Improper Authentication •
CVSS: 9.8EPSS: 0%CPEs: 50EXPL: 0CVE-2023-21459
https://notcve.org/view.php?id=CVE-2023-21459
Use after free vulnerability in decon driver prior to SMR Mar-2023 Release 1 allows attackers to cause memory access fault. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=03 • CWE-416: Use After Free •