Multiple vulnerabilities in Samsung Mobile Firmware

1) Information exposure

EUVDB-ID: #VU75635

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21118

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

The vulnerability allows a local application to gain access to sensitive information.

The vulnerability exists due to improper input validation within the System component. A local application can gain access to sensitive information.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Input validation error

EUVDB-ID: #VU76529

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21502

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the device.

The vulnerability exists due to insufficient input validation in FactoryTest application. A malicious application can get privilege escalation via debugging commands.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Use-after-free

EUVDB-ID: #VU71482

Risk: High

CVSSv4.0: 8.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber]

CVE-ID: CVE-2023-0266

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the snd_ctl_elem_read() function in the Linux kernel sound subsystem. A local user can trigger a use-after-free error and execute arbitrary code on the system.

Note, the vulnerability is being actively exploited in the wild.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

4) Improper input validation

EUVDB-ID: #VU75631

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21116

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation within the Framework component. A local application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Out-of-bounds write

EUVDB-ID: #VU74192

Risk: High

CVSSv4.0: 8.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber]

CVE-ID: CVE-2022-22706

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to a boundary error. A local application can trigger an out-of-bounds write and execute arbitrary code with elevated privileges. This vulnerability was patched in Google Pixel and tracked under #VU64876 (CVE-2021-39793).

Note, the vulnerability is known to be exploited in the wild in targeted attacks.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

6) Improper input validation

EUVDB-ID: #VU75637

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21111

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the System component. A local application can perform a denial of service (DoS) attack.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Improper input validation

EUVDB-ID: #VU75636

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21103

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the System component. A local application can perform a denial of service (DoS) attack.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Information exposure

EUVDB-ID: #VU75634

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21112

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

The vulnerability allows a local application to gain access to sensitive information.

The vulnerability exists due to improper input validation within the System component. A local application can gain access to sensitive information.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Input validation error

EUVDB-ID: #VU76531

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21501

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to insufficient validation of user-supplied input in mPOS fiserve trustlet. A local application can execute arbitrary code on the device.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU69972

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-20444

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to improperly imposed security restrictions within the Android framework. A local application can escalate privileges on the system.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Improper input validation

EUVDB-ID: #VU75632

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21110

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation within the Frameworks component. A local application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Improper input validation

EUVDB-ID: #VU75630

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20930

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the Framework component. A local application can perform a denial of service (DoS) attack.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Information exposure

EUVDB-ID: #VU75629

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21104

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

The vulnerability allows a local application to gain access to sensitive information.

The vulnerability exists due to improper input validation within the Framework component. A local application can gain access to sensitive information.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

14) Information exposure

EUVDB-ID: #VU75628

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20914

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

The vulnerability allows a local application to gain access to sensitive information.

The vulnerability exists due to improper input validation within the Framework component. A local application can gain access to sensitive information.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

15) Improper input validation

EUVDB-ID: #VU75627

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21117

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation within the Framework component. A local application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

16) Improper input validation

EUVDB-ID: #VU75626

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21109

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation within the Framework component. A local application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

17) Improper access control

EUVDB-ID: #VU76530

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21493

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

The vulnerability allows a local application to gain access to sensitive information.

The vulnerability exists due to improper access restrictions in SemShareFileProvider. A local application can access protected data.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

18) Double Free

EUVDB-ID: #VU76532

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21500

CWE-ID: CWE-415 - Double Free

Exploit availability: No

The vulnerability allows a local application to gain access to sensitive information.

The vulnerability exists due to a boundary error in setPinPadImages in mPOS TUI trustlet. A local application can trigger a double free error and access the trustlet memory.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

19) Improper input validation

EUVDB-ID: #VU75625

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-20338

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation within the Framework component. A local application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

20) Improper access control

EUVDB-ID: #VU76548

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21488

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

The vulnerability allows a local application to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions in Tips. A local application can bypass implemented security restrictions and launch arbitrary activity in Tips.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

21) Improper access control

EUVDB-ID: #VU76555

Risk: Low

CVSSv4.0: 5.8 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21484

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

The vulnerability allows a local application to bypass implemented security restrictions.

The vulnerability exists due to improper access restrictions in AppLock. A local application can bypass implemented security restrictions and execute privileged operations.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

22) Improper export of android application components

EUVDB-ID: #VU76554

Risk: Low

CVSSv4.0: 0.4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21485

CWE-ID: CWE-926 - Improper Export of Android Application Components

Exploit availability: No

The vulnerability allows an attacker to gain access to sensitive information.

The vulnerability exists due to improper export of android application components in VideoPreviewActivity in Call Settings. An attacker with physical access to device can obtain certain media data stored in sandbox.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

23) Improper export of android application components

EUVDB-ID: #VU76553

Risk: Low

CVSSv4.0: 0.4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21486

CWE-ID: CWE-926 - Improper Export of Android Application Components

Exploit availability: No

The vulnerability allows an attacker to gain access to sensitive information.

The vulnerability exists due to improper export of android application components in ImagePreviewActivity in Call Settings. An attacker with physical access to device can obtain certain media data stored in sandbox.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

24) Improper access control

EUVDB-ID: #VU76552

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21487

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

The vulnerability allows a local application to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions in Telephony framework. A local application can bypass implemented security restrictions and change a call setting.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

25) Buffer overflow

EUVDB-ID: #VU76551

Risk: Low

CVSSv4.0: 0.4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21503

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

The vulnerability allows an attacker to perform a denial of service (DoS) attack.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

26) Buffer overflow

EUVDB-ID: #VU76550

Risk: Low

CVSSv4.0: 0.4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21504

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

The vulnerability allows an attacker to perform a denial of service (DoS) attack.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

27) Buffer overflow

EUVDB-ID: #VU76549

Risk: Low

CVSSv4.0: 0.4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21494

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

The vulnerability allows an attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error within the authentication API in mm_Authentication.c in Shannon baseband. An attacker with physical proximity to device can trigger memory corruption and perform a denial of service (DoS) attack.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

28) Out-of-bounds write

EUVDB-ID: #VU76547

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21489

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

The vulnerability allows an attacker to compromise the vulnerable device.

The vulnerability exists due to a boundary error in bootloader. An attacker with physical access to device can trigger an out-of-bounds write and execute arbitrary code on the system..

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

29) Out-of-bounds write

EUVDB-ID: #VU76533

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21499

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the device.

The vulnerability exists due to a boundary error in TA_Communication_mpos_encrypt_pin in mPOS TUI trustlet. A local application can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

30) Improper access control

EUVDB-ID: #VU76545

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21495

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

The vulnerability allows a local application to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions in Knox Enrollment Service. A local application can bypass implemented security restrictions and install KSP app when device admin is set.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

31) Improper access control

EUVDB-ID: #VU76544

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21490

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

The vulnerability allows a local application to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions in GearManagerStub. A local application can bypass implemented security restrictions and delete applications installed by watchmanager.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

32) Improper access control

EUVDB-ID: #VU76543

Risk: Low

CVSSv4.0: 5.8 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21491

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

The vulnerability allows a local application to compromise the affected device.

The vulnerability exists due to improper access restrictions in ThemeManager. A local application can write arbitrary files with system privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

33) Inclusion of sensitive information in log files

EUVDB-ID: #VU76542

Risk: Medium

CVSSv4.0: 6.8 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:A/U:Green]

CVE-ID: CVE-2023-21492

CWE-ID: CWE-532 - Information Exposure Through Log Files

Exploit availability: No

The vulnerability allows a local application to gain access to sensitive information.

The vulnerability exists due to kernel pointers are printed into the log file. A local application can read the log file and use the kernel pointers to bypass ASLR protection.

Note, the vulnerability is being exploited in the wild.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

34) Active debug code

EUVDB-ID: #VU76541

Risk: Low

CVSSv4.0: 3.7 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21496

CWE-ID: CWE-489 - Active Debug Code

Exploit availability: No

The vulnerability allows an attacker to escalate privileges on the device.

The vulnerability exists due to presence of an active debug code in ActivityManagerService. An attacker with physical access to device can use debug function via setting the debug level.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

35) Format string error

EUVDB-ID: #VU76540

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21497

CWE-ID: CWE-134 - Use of Externally-Controlled Format String

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the device.

The vulnerability exists due to a format string error in mPOS TUI trustlet. A local application can supply a specially crafted input that contains format string specifiers and execute arbitrary code on the target system.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

36) Out-of-bounds write

EUVDB-ID: #VU76539

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21498

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the device.

The vulnerability exists due to a boundary error in setPartnerTAInfo in mPOS TUI trustlet. A local application can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

37) Improper input validation

EUVDB-ID: #VU73281

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20993

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation within the Framework component. A local application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

38) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU69970

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-39617

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to improperly imposed security restrictions within the Android framework. A local application can escalate privileges on the system.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

39) Double Free

EUVDB-ID: #VU74305

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-33231

CWE-ID: CWE-415 - Double Free

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Core. A local application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

40) Use-after-free

EUVDB-ID: #VU74386

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-42716

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

41) Input validation error

EUVDB-ID: #VU74400

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0879

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

42) Input validation error

EUVDB-ID: #VU74401

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0880

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

43) Input validation error

EUVDB-ID: #VU74402

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0881

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

44) Input validation error

EUVDB-ID: #VU74403

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0882

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

45) Input validation error

EUVDB-ID: #VU74404

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0883

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

46) Input validation error

EUVDB-ID: #VU74405

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0884

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

47) Input validation error

EUVDB-ID: #VU74395

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0873

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

48) Use-after-free

EUVDB-ID: #VU74382

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-33917

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code with escalated privileges.

The vulnerability exists due to a use-after-free error when processing GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

49) Input validation error

EUVDB-ID: #VU74396

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0874

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

50) Use-after-free

EUVDB-ID: #VU74383

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-36449

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to a use-after-free error. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

51) Use-after-free

EUVDB-ID: #VU74191

Risk: High

CVSSv4.0: 8.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber]

CVE-ID: CVE-2022-38181

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to a use-after-free error. A local application can trigger memory corruption and execute arbitrary code with elevated privileges.

Note, this vulnerability is known to be exploited in targeted attacks spotted in November 2022.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

52) Use-after-free

EUVDB-ID: #VU74385

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-41757

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

53) Out-of-bounds write

EUVDB-ID: #VU74507

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-32599

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a logic error within rpmb. A local privileged application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

54) Improper Validation of Array Index

EUVDB-ID: #VU74309

Risk: Medium

CVSSv4.0: 4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-33302

CWE-ID: CWE-129 - Improper Validation of Array Index

Exploit availability: No

The vulnerability allows a local attacker to execute arbitrary code.

The vulnerability exists due to improper input validation in User Identity Module. A local attacker can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

55) Improper Validation of Array Index

EUVDB-ID: #VU74308

Risk: Medium

CVSSv4.0: 4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-33289

CWE-ID: CWE-129 - Improper Validation of Array Index

Exploit availability: No

The vulnerability allows a local attacker to execute arbitrary code.

The vulnerability exists due to improper input validation in Modem. A local attacker can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

56) Buffer overflow

EUVDB-ID: #VU74307

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-33288

CWE-ID: CWE-120 - Buffer overflow

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Core. A local application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

57) Input validation error

EUVDB-ID: #VU74399

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0878

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

58) Input validation error

EUVDB-ID: #VU74397

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0875

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

59) Out-of-bounds write

EUVDB-ID: #VU75000

Risk: Low

CVSSv4.0: 1.8 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:L/VI:H/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-47337

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

The vulnerability allows a local application to read and manipulate data.

The vulnerability exists due to a missing permission check within the Media service in Android. A local application can read and manipulate data.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

60) Out-of-bounds write

EUVDB-ID: #VU74513

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20657

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within mtee. A local privileged application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

61) Information exposure

EUVDB-ID: #VU75001

Risk: Low

CVSSv4.0: 4.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-47338

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

The vulnerability allows a local application to read and manipulate data.

The vulnerability exists due to a missing permission check within the email service in Android. A local application can read and manipulate data.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

62) Buffer overflow

EUVDB-ID: #VU74999

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-47336

CWE-ID: CWE-120 - Buffer overflow

Exploit availability: No

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing permission check within the Telecom service in Android. A local privileged application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

63) Buffer overflow

EUVDB-ID: #VU74998

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-47335

CWE-ID: CWE-120 - Buffer overflow

Exploit availability: No

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing permission check within the Telecom service in Android. A local privileged application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

64) Buffer over-read

EUVDB-ID: #VU74331

Risk: High

CVSSv4.0: 6.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2022-40503

CWE-ID: CWE-126 - Buffer over-read

Exploit availability: No

The vulnerability allows a remote attacker to read and manipulate data.

The vulnerability exists due to improper input validation in Bluetooth Host.. A remote attacker can read and manipulate data.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

65) Time-of-check Time-of-use (TOCTOU) Race Condition

EUVDB-ID: #VU74321

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-33270

CWE-ID: CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Exploit availability: No

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in Modem. A remote attacker can perform a denial of service (DoS) attack.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

66) Integer underflow

EUVDB-ID: #VU74332

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-21630

CWE-ID: CWE-191 - Integer underflow

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Multimedia Framework. A local application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

67) Integer overflow

EUVDB-ID: #VU74320

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-33269

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Core. A local application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

68) Improper input validation

EUVDB-ID: #VU74509

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20653

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within keyinstall. A local privileged application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

69) Input validation error

EUVDB-ID: #VU74398

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0876

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

70) Improper input validation

EUVDB-ID: #VU74508

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20652

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within keyinstall. A local privileged application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

71) Improper input validation

EUVDB-ID: #VU74510

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20654

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a missing bounds check within keyinstall. A local privileged application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

72) Write-what-where Condition

EUVDB-ID: #VU74512

Risk: Low

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20656

CWE-ID: CWE-123 - Write-what-where Condition

Exploit availability: No

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to a logic error within geniezone. A local privileged application can execute arbitrary code.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

73) Buffer overflow

EUVDB-ID: #VU74380

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20941

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

The vulnerability allows a local application to execute arbitrary code with elevated privileges.

The vulnerability exists due to a boundary error in drivers/usb/gadget/function/f_accessory.c. A local application can trigger memory corruption and execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

74) Use-after-free

EUVDB-ID: #VU71481

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-4696

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in io_uring and the IORING_OP_SPLICE operation. A local user can trigger a use-after-free error and escalate privileges on the system.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

75) Input validation error

EUVDB-ID: #VU74406

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0885

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

76) Input validation error

EUVDB-ID: #VU74394

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-0872

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to insufficient input validation within PowerVR-GPU. A local application can execute arbitrary code with elevated privileges.

Install update from vendor's website.

Samsung Mobile Firmware: before SMR-MAY-2023

• cpe:2.3:a:samsung:samsung_mobile_firmware:*:*:*:*:*:*:*:*

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.