6 results (0.011 seconds)

CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0

An issue was discovered on Samsung mobile devices with N(7.0), O(8.0) (exynos7420 or Exynos 8890/8996 chipsets) software. Cache attacks can occur against the Keymaster AES-GCM implementation because T-Tables are used; the Cryptography Extension (CE) is not used. The Samsung ID is SVE-2018-12761 (September 2018). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.0), O(8.0) (exynos7420 o Exynos 8890/8996). Ataques de la memoria Caché pueden ocurrir contra la implementación Keymaster AES-GCM porque son usadas T-Tables; la Cryptography Extension (CE) no es usada. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •

CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0

An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) (Exynos7420 or Exynox8890 chipsets) software. The Camera application can leak uninitialized memory via ion. The Samsung ID is SVE-2016-6989 (April 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software M(6.0) y N(7.x) (Exynos7420 o Exynox8890). La aplicación Camera puede filtrar memoria no inicializada por medio de ion. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-772: Missing Release of Resource after Effective Lifetime •

CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0

An issue was discovered on Samsung mobile devices with M(6.0) and N(7.0) (Exynos5433, Exynos7420, or Exynos7870 chipsets) software. An attacker can bypass a ko (aka Kernel Module) signature by modifying the count of kernel modules. The Samsung ID is SVE-2016-7466 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software M(6.0) y N(7.0) (Exynos5433, Exynos7420 o Exynos7870). Un atacante puede omitir una firma ko (también se conoce como Módulo Kernel) al modificar el conteo de módulos del kernel. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-354: Improper Validation of Integrity Check Value •

CVSS: 9.8EPSS: 0%CPEs: 13EXPL: 0

An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) (Exynos54xx, Exynos7420, Exynos8890, or Exynos8895 chipsets) software. There is a buffer overflow in the sensor hub. The Samsung ID is SVE-2016-7484 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software KK(4.4), L(5.0 / 5.1), M(6.0) y N(7.0) (Exynos54xx, Exynos7420, Exynos8890 o Exynos8895). Se presenta un desbordamiento del búfer en el sensor hub. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0

An issue was discovered on Samsung mobile devices with M(6.0) and N(7.0) (Exynos7420, Exynos8890, or MSM8996 chipsets) software. RKP allows memory corruption. The Samsung ID is SVE-2016-7897 (January 2017). Se detectó un problema en dispositivos móviles Samsung con versiones de software M(6.0) y N(7.0) (Exynos7420, Exynos8890 o MSM8996). RKP permite una corrupción de la memoria. • https://security.samsungmobile.com/securityUpdate.smsb • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •