CVE-2025-20936 — CVSS 8.8 (high): Improper access control in HDCP trustlet prior to SMR Apr-2025 Release 1 allows local attackers with shell privilege to escalate their…
CVE-2023-30692 — CVSS 8.5 (high): Improper input validation vulnerability in Evaluator prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities.
CVE-2023-30664 — CVSS 8.5 (high): Improper input validation vulnerability in RegisteredMSISDN prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged…
CVE-2023-30710 — CVSS 8.5 (high): Improper input validation vulnerability in Knox AI prior to SMR Sep-2023 Release 1 allows local attackers to launch privileged activities.
CVE-2023-30658 — CVSS 8.5 (high): Improper input validation vulnerability in DataProfile prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged…
CVE-2023-30656 — CVSS 8.5 (high): Improper input validation vulnerability in LSOItemData prior to SMR Jul-2023 Release 1 allows attackers to launch certain activities.
CVE-2023-21439 — CVSS 8.5 (high): Improper input validation vulnerability in UwbDataTxStatusEvent prior to SMR Feb-2023 Release 1 allows attackers to launch certain…
CVE-2023-30655 — CVSS 8.5 (high): Improper input validation vulnerability in SCEPProfile prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged…
CVE-2023-21491 — CVSS 8.5 (high): Improper access control vulnerability in ThemeManager prior to SMR May-2023 Release 1 allows local attackers to write arbitrary files with…
CVE-2023-30690 — CVSS 8.5 (high): Improper input validation vulnerability in Duo prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities.
CVE-2023-21480 — CVSS 8.5 (high): Improper input validation vulnerability in CertByte prior to SMR Apr-2023 Release 1 allows local attackers to launch privileged activities.
CVE-2024-34620 — CVSS 8.4 (high): Improper privilege management in SumeNNService prior to SMR Aug-2024 Release 1 allows local attackers to start privileged service.
CVE-2023-30680 — CVSS 8.4 (high): Improper privilege management vulnerability in MMIGroup prior to SMR Aug-2023 Release 1 allows code execution with privilege.
CVE-2024-20813 — CVSS 8.4 (high): Out-of-bounds Write in padmd_vld_qtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code.
CVE-2024-20812 — CVSS 8.4 (high): Out-of-bounds Write in padmd_vld_htbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-42537 — CVSS 8.4 (high): An improper input validation in get_head_crc in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read…
CVE-2023-42535 — CVSS 8.4 (high): Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-30691 — CVSS 8.4 (high): Parcel mismatch in AuthenticationConfig prior to SMR Aug-2023 Release 1 allows local attacker to privilege escalation.
CVE-2023-42536 — CVSS 8.4 (high): An improper input validation in saped_dec in libsaped prior to SMR Nov-2023 Release 1 allows local attackers to cause out-of-bounds read…
CVE-2024-20844 — CVSS 8.4 (high): Out-of-bounds write vulnerability while parsing remaining codewords in libsavsac.so prior to SMR Apr-2024 Release 1 allows local attacker…
CVE-2024-20845 — CVSS 8.4 (high): Out-of-bounds write vulnerability while releasing memory in libsavsac.so prior to SMR Apr-2024 Release 1 allows local attacker to execute…
CVE-2023-21499 — CVSS 8.2 (high): Out-of-bounds write vulnerability in TA_Communication_mpos_encrypt_pin in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local…
CVE-2023-21501 — CVSS 8.2 (high): Improper input validation vulnerability in mPOS fiserve trustlet prior to SMR May-2023 Release 1 allows local attackers to execute…
CVE-2024-49415 — CVSS 8.1 (high): Out-of-bound write in libsaped.so prior to SMR Dec-2024 Release 1 allows remote attackers to execute arbitrary code.
CVE-2026-20990 — CVSS 8.1 (high): Improper export of android application components in Secure Folder prior to SMR Mar-2026 Release 1 allows local attackers to launch…
CVE-2023-21475 — CVSS 8.0 (high): Out-of-bounds Write vulnerability in libaudiosaplus_sec.so library prior to SMR Apr-2023 Release 1 allows local attacker to execute…
CVE-2024-20816 — CVSS 8.0 (high): Improper authentication vulnerability in onCharacteristicWriteRequest in Auto Hotspot prior to SMR Feb-2024 Release 1 allows adjacent…
CVE-2024-20815 — CVSS 8.0 (high): Improper authentication vulnerability in onCharacteristicReadRequest in Auto Hotspot prior to SMR Feb-2024 Release 1 allows adjacent…
CVE-2023-21476 — CVSS 8.0 (high): Out-of-bounds Write vulnerability in libaudiosaplus_sec.so library prior to SMR Apr-2023 Release 1 allows local attacker to execute…
CVE-2024-20874 — CVSS 7.9 (high): Improper access control vulnerability in SmartManagerCN prior to SMR Jun-2024 Release 1 allows local attackers to launch privileged…
CVE-2023-21477 — CVSS 7.9 (high): Access of Memory Location After End of Buffer vulnerability in TIGERF trustlet prior to SMR Apr-2023 Release 1 allows local attackers to…
CVE-2023-30709 — CVSS 7.9 (high): Improper access control in Dual Messenger prior to SMR Sep-2023 Release 1 allows local attackers launch activity with system privilege.
CVE-2023-30733 — CVSS 7.8 (high): Stack-based Buffer Overflow in vulnerability HDCP trustlet prior to SMR Oct-2023 Release 1 allows local privileged attackers to perform…
CVE-2023-30679 — CVSS 7.8 (high): Improper access control in HDCP trustlet prior to SMR Aug-2023 Release 1 allows local attackers to execute arbitrary code.
CVE-2026-20983 — CVSS 7.8 (high): Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 allows local attackers to launch…
CVE-2026-20979 — CVSS 7.8 (high): Improper privilege management in Settings prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Settings…
CVE-2026-20971 — CVSS 7.8 (high): Use After Free in PROCA driver prior to SMR Jan-2026 Release 1 allows local attackers to potentially execute arbitrary code.
CVE-2026-20970 — CVSS 7.8 (high): Improper access control in SLocation prior to SMR Jan-2026 Release 1 allows local attackers to execute the privileged APIs.
CVE-2026-21029 — CVSS 7.8 (high): Improper export of android application components in Galaxy Editing Service prior to SMR Jun-2026 Release 1 allows local attacker to…
CVE-2026-21031 — CVSS 7.8 (high): Improper authorization in AppBlock prior to SMR Jun-2026 Release 1 allows local attacker to launch arbitrary activity. User interaction is…
CVE-2026-21030 — CVSS 7.8 (high): Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions.
CVE-2024-34595 — CVSS 7.8 (high): Improper access control in clickAdapterItem of SystemUI prior to SMR Jul-2024 Release 1 allows local attackers to launch privileged…
CVE-2024-34585 — CVSS 7.8 (high): Improper access control in launchApp of SystemUI prior to SMR Jul-2024 Release 1 allows local attackers to launch privileged activities.
CVE-2024-20891 — CVSS 7.8 (high): Improper access control in launchFullscreenIntent of SystemUI prior to SMR Jul-2024 Release 1 allows local attackers to launch privileged…
CVE-2024-20888 — CVSS 7.8 (high): Improper access control in OneUIHome prior to SMR Jul-2024 Release 1 allows local attackers to launch privileged activities. User…
CVE-2023-30644 — CVSS 7.8 (high): Stack out of bound write vulnerability in CdmaSmsParser of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.
CVE-2023-30645 — CVSS 7.8 (high): Heap out of bound write vulnerability in IpcRxIncomingCBMsg of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary…
CVE-2023-30646 — CVSS 7.8 (high): Heap out of bound write vulnerability in BroadcastSmsConfig of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary…
CVE-2023-30647 — CVSS 7.8 (high): Heap out of bound write vulnerability in IpcRxUsimPhoneBookCapa of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute…
CVE-2023-30649 — CVSS 7.8 (high): Heap out of bound write vulnerability in RmtUimNeedApdu of RILD prior to SMR Jul-2023 Release 1 allows attackers to execute arbitrary code.
CVE-2026-21020 — CVSS 7.8 (high): Improper export of android application components in OmaCP prior to SMR May-2026 Release 1 allows local attackers to trigger privileged…
CVE-2023-30643 — CVSS 7.7 (high): Missing authentication vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to delete arbitrary…
CVE-2024-20895 — CVSS 7.7 (high): Improper access control in Dar service prior to SMR Jul-2024 Release 1 allows local attackers to bypass restriction for calling SDP…
CVE-2024-34666 — CVSS 7.5 (high): Out-of-bounds write in parsing h.264 format in a specific mode in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers…
CVE-2024-34593 — CVSS 7.5 (high): Improper input validation in parsing and distributing RTCP packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote attackers to…
CVE-2024-34587 — CVSS 7.5 (high): Improper input validation in parsing application information from RTCP packet in librtp.so prior to SMR Jul-2024 Release 1 allows remote…
CVE-2024-34665 — CVSS 7.5 (high): Out-of-bounds write in parsing h.264 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute…
CVE-2024-34668 — CVSS 7.5 (high): Out-of-bounds write in parsing h.263 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute…
CVE-2023-30706 — CVSS 7.5 (high): Improper authorization in Samsung Keyboard prior to SMR Sep-2023 Release 1 allows attacker to read arbitrary file with system privilege.
CVE-2024-34669 — CVSS 7.5 (high): Out-of-bounds write in parsing h.263+ format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute…
CVE-2024-34619 — CVSS 7.5 (high): Improper input validation in librtp.so prior to SMR Aug-2024 Release 1 allows remote attackers to execute arbitrary code with system…
CVE-2023-30699 — CVSS 7.5 (high): Out-of-bounds write vulnerability in parser_hvcC function of libsimba library prior to SMR Aug-2023 Release 1 allows code execution by…
CVE-2024-34667 — CVSS 7.5 (high): Out-of-bounds write in parsing h.265 format in librtppayload.so prior to SMR Oct-2024 Release 1 allows remote attackers to execute…
CVE-2023-21441 — CVSS 7.4 (high): Insufficient Verification of Data Authenticity vulnerability in Routine prior to versions 2.6.30.6 in Android Q(10), 3.1.21.10 in Android…
CVE-2023-42560 — CVSS 7.4 (high): Heap out-of-bounds write vulnerability in dec_mono_audb of libsavsac.so prior to SMR Dec-2023 Release 1 allows an attacker to execute…
CVE-2024-20877 — CVSS 7.3 (high): Heap out-of-bound write vulnerability in parsing grid image header in libsavscmn.so prior to SMR Jun-2024 Release 1 allows local attackers…
CVE-2024-20849 — CVSS 7.3 (high): Out-of-bound Write vulnerability in chunk parsing implementation of libsdffextractor prior to SMR Apr-2023 Release 1 allows local attackers…
CVE-2025-20957 — CVSS 7.3 (high): Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch arbitrary activities with…
CVE-2025-20903 — CVSS 7.3 (high): Improper access control in SecSettingsIntelligence prior to SMR Mar-2025 Release 1 allows local attackers to launch privileged activities…
CVE-2023-21420 — CVSS 7.3 (high): Use of Externally-Controlled Format String vulnerabilities in STST TA prior to SMR Jan-2023 Release 1 allows arbitrary code execution.
CVE-2023-42568 — CVSS 7.3 (high): Improper access control vulnerability in SmartManagerCN prior to SMR Dec-2023 Release 1 allows local attackers to access arbitrary files…
CVE-2023-42566 — CVSS 7.3 (high): Out-of-bound write vulnerability in libsavsvc prior to SMR Dec-2023 Release 1 allows local attackers to execute arbitrary code.
CVE-2024-20878 — CVSS 7.3 (high): Heap out-of-bound write vulnerability in parsing grid image in libsavscmn.so prior to SMR June-2024 Release 1 allows local attackers to…
CVE-2023-21489 — CVSS 7.1 (high): Heap out-of-bounds write vulnerability in bootloader prior to SMR May-2023 Release 1 allows a physical attacker to execute arbitrary code.
CVE-2025-21050 — CVSS 7.1 (high): Improper input validiation in Contacts prior to SMR Oct-2025 Release 1 allows local attackers to access data across multiple user profiles.
CVE-2023-42561 — CVSS 7.1 (high): Heap out-of-bounds write vulnerability in bootloader prior to SMR Dec-2023 Release 1 allows a physical attacker to execute arbitrary code.
CVE-2024-49413 — CVSS 7.1 (high): Improper Verification of Cryptographic Signature in SmartSwitch prior to SMR Dec-2024 Release 1 allows local attackers to install malicious…
CVE-2025-20890 — CVSS 7.0 (high): Out-of-bounds write in decoding frame buffer in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary…
CVE-2025-20888 — CVSS 7.0 (high): Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to…
CVE-2025-20882 — CVSS 7.0 (high): Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to…
CVE-2025-21006 — CVSS 7.0 (high): Out-of-bounds write in handling of macro blocks for MPEG4 codec in libsavsvc.so prior to Android 15 allows local attackers to write…
CVE-2025-20881 — CVSS 7.0 (high): Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local…
CVE-2023-21493 — CVSS 6.8 (medium): Improper access control vulnerability in SemShareFileProvider prior to SMR May-2023 Release 1 allows local attackers to access protected…
CVE-2026-21011 — CVSS 6.8 (medium): Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend…
CVE-2023-30712 — CVSS 6.8 (medium): Improper input validation in Settings Suggestions prior to SMR Sep-2023 Release 1 allows attackers to launch arbitrary activity.
CVE-2023-21472 — CVSS 6.8 (medium): Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1 allows a physical attacker to execute…
CVE-2023-21473 — CVSS 6.8 (medium): Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1 allows a physical attacker to execute…
CVE-2026-21021 — CVSS 6.8 (medium): Improper input validation in Routines prior to SMR May-2026 Release 1 allows physical attackers to launch privileged activity.
CVE-2025-21031 — CVSS 6.8 (medium): Improper access control in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to use the privileged APIs.
CVE-2026-21007 — CVSS 6.8 (medium): Improper check for exceptional conditions in Device Care prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Knox Guard.
CVE-2026-21003 — CVSS 6.8 (medium): Improper input validation in data related to network restrictions prior to SMR Apr-2026 Release 1 allows physical attackers to bypass the…
CVE-2026-20980 — CVSS 6.8 (medium): Improper input validation in PACM prior to SMR Feb-2026 Release 1 allows physical attacker to execute arbitrary commands.
CVE-2026-21009 — CVSS 6.8 (medium): Improper check for exceptional conditions in Recents prior to SMR Apr-2026 Release 1 allows physical attacker to bypass App Pinning.
CVE-2024-20803 — CVSS 6.8 (medium): Improper authentication vulnerability in Bluetooth pairing process prior to SMR Jan-2024 Release 1 allows remote attackers to establish…
CVE-2025-21073 — CVSS 6.8 (medium): Insecure default configuration in USB connection mode prior to SMR Nov-2025 Release 1 allows privileged physical attackers to access user…
CVE-2023-42528 — CVSS 6.7 (medium): Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to…
CVE-2023-30727 — CVSS 6.7 (medium): Improper access control vulnerability in SecSettings prior to SMR Oct-2023 Release 1 allows attackers to enable Wi-Fi and connect arbitrary…
CVE-2026-21018 — CVSS 6.7 (medium): Out-of-bounds write in SveService prior to SMR May-2026 Release 1 allows local privileged attackers to execute arbitrary code.
CVE-2026-20968 — CVSS 6.7 (medium): Use after free in DualDAR prior to SMR Jan-2026 Release 1 allows local privileged attackers to execute arbitrary code.
CVE-2025-21048 — CVSS 6.7 (medium): Relative path traversal in Knox Enterprise prior to SMR Oct-2025 Release 1 allows local attackers to execute arbitrary code.
CVE-2023-21451 — CVSS 6.7 (medium): A Stack-based overflow vulnerability in IpcRxEmbmsSessionList in SECRIL prior to Android S(12) allows attacker to cause memory corruptions.
CVE-2025-20937 — CVSS 6.7 (medium): Out-of-bounds write in Keymaster trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.
CVE-2024-34638 — CVSS 6.7 (medium): Improper handling of exceptional conditions in ThemeCenter prior to SMR Sep-2024 Release 1 allows local attackers to delete non-preloaded…
CVE-2023-30650 — CVSS 6.7 (medium): Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute…
CVE-2023-30651 — CVSS 6.7 (medium): Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute…
CVE-2023-30652 — CVSS 6.7 (medium): Out of bounds read and write in callrunTspCmdNoRead of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to…
CVE-2023-30653 — CVSS 6.7 (medium): Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute…
CVE-2023-30654 — CVSS 6.7 (medium): Improper access control vulnerability in SLocationService prior to SMR Aug-2023 Release 1 allows local attacker to update fake location.
CVE-2024-20863 — CVSS 6.7 (medium): Out of bounds write vulnerability in SNAP in HAL prior to SMR May-2024 Release 1 allows local privileged attackers to execute arbitrary…
CVE-2023-30668 — CVSS 6.7 (medium): Out-of-bounds Write in BuildOemSecureSimLockResponse of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute…
CVE-2023-30669 — CVSS 6.7 (medium): Out-of-bounds Write in DoOemFactorySendFactoryTestResult of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute…
CVE-2023-30670 — CVSS 6.7 (medium): Out-of-bounds Write in BuildIpcFactoryDeviceTestEvent of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute…
CVE-2023-30686 — CVSS 6.7 (medium): Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-30687 — CVSS 6.7 (medium): Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-30688 — CVSS 6.7 (medium): Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-30689 — CVSS 6.7 (medium): Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute…
CVE-2023-30693 — CVSS 6.7 (medium): Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute…
CVE-2023-30694 — CVSS 6.7 (medium): Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2023-42563 — CVSS 6.7 (medium): Integer overflow vulnerability in landmarkCopyImageToNative of libFacePreProcessingjni.camera.samsung.so prior to SMR Dec-2023 Release 1…
CVE-2023-42562 — CVSS 6.7 (medium): Integer overflow vulnerability in detectionFindFaceSupportMultiInstance of libFacePreProcessingjni.camera.samsung.so prior to SMR Dec-2023…
CVE-2023-42530 — CVSS 6.7 (medium): Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows attackers to enable Wi-Fi and Wi-Fi Direct…
CVE-2023-42529 — CVSS 6.7 (medium): Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to execute arbitrary code.
CVE-2023-30739 — CVSS 6.7 (medium): Arbitrary File Descriptor Write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
CVE-2026-21010 — CVSS 6.6 (medium): Improper input validation in Retail Mode prior to SMR Apr-2026 Release 1 allows local attackers to trigger privileged functions.
CVE-2024-20865 — CVSS 6.6 (medium): Authentication bypass in bootloader prior to SMR May-2024 Release 1 allows physical attackers to flash arbitrary images.
CVE-2023-42564 — CVSS 6.6 (medium): Improper access control in knoxcustom service prior to SMR Dec-2023 Release 1 allows attacker to send broadcast with system privilege.
CVE-2024-20819 — CVSS 6.6 (medium): Out-of-bounds Write vulnerabilities in svc1td_vld_plh_ap of libsthmbc.so prior to SMR Feb-2024 Release 1 allows local attackers to trigger…
CVE-2023-42533 — CVSS 6.6 (medium): Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in…
CVE-2024-34646 — CVSS 6.6 (medium): Improper access control in DualDarManagerProxy prior to SMR Sep-2024 Release 1 allows local attackers to cause local permanent denial of…
CVE-2025-20963 — CVSS 6.6 (medium): Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds…
CVE-2025-20964 — CVSS 6.6 (medium): Out-of-bounds write in parsing media files in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds…
CVE-2026-20981 — CVSS 6.6 (medium): Improper input validation in FacAtFunction prior to SMR Feb-2026 Release 1 allows privileged physical attacker to execute arbitrary command…
CVE-2024-20817 — CVSS 6.6 (medium): Out-of-bounds Write vulnerabilities in svc1td_vld_slh of libsthmbc.so prior to SMR Feb-2024 Release 1 allows local attackers to trigger…
CVE-2024-20818 — CVSS 6.6 (medium): Out-of-bounds Write vulnerabilities in svc1td_vld_elh of libsthmbc.so prior to SMR Feb-2024 Release 1 allows local attackers to trigger…
CVE-2024-20892 — CVSS 6.5 (medium): Improper verification of signature in FilterProvider prior to SMR Jul-2024 Release 1 allows local attackers to execute privileged…
CVE-2026-21008 — CVSS 6.5 (medium): Exposure of sensitive information in S Share prior to SMR Apr-2026 Release 1 allows adjacent attacker to access sensitive information.
CVE-2025-20908 — CVSS 6.5 (medium): Use of insufficiently random values in Auracast prior to SMR Mar-2025 Release 1 allows adjacent attackers to access Auracast broadcasting.
CVE-2025-20943 — CVSS 6.4 (medium): Out-of-bounds write in secfr trustlet prior to SMR Apr-2025 Release 1 allows local privileged attackers to cause memory corruption.
CVE-2024-20831 — CVSS 6.4 (medium): Stack overflow in Little Kernel in bootloader prior to SMR Mar-2024 Release 1 allows local privileged attackers to execute arbitrary code.
CVE-2024-20832 — CVSS 6.4 (medium): Heap overflow in Little Kernel in bootloader prior to SMR Mar-2024 Release 1 allows local privileged attackers to execute arbitrary code.
CVE-2024-20880 — CVSS 6.4 (medium): Stack-based buffer overflow vulnerability in bootloader prior to SMR Jun-2024 Release 1 allows physical attackers to overwrite memory.
CVE-2024-20881 — CVSS 6.4 (medium): Improper input validation vulnerability in chnactiv TA prior to SMR Jun-2024 Release 1 allows local privileged attackers lead to potential…
CVE-2025-20885 — CVSS 6.4 (medium): Out-of-bounds write in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to cause memory corruption.
CVE-2025-20982 — CVSS 6.4 (medium): Out-of-bounds write in setting auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 allows local privileged attackers to write…
CVE-2025-20983 — CVSS 6.4 (medium): Out-of-bounds write in checking auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 allows local privileged attackers to…
CVE-2025-20904 — CVSS 6.3 (medium): Out-of-bounds write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to cause memory corruption.
CVE-2023-42534 — CVSS 6.3 (medium): Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows local attackers to read arbitrary files…
CVE-2023-30671 — CVSS 6.3 (medium): Logic error in package installation via adb command prior to SMR Jul-2023 Release 1 allows local attackers to downgrade installed…
CVE-2025-20905 — CVSS 6.3 (medium): Out-of-bounds read and write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to read and write…
CVE-2023-21474 — CVSS 6.3 (medium): Intent redirection vulnerability in SecSettings prior to SMR Apr-2022 Release 1 allows attackers to access arbitrary file with system…
CVE-2024-20872 — CVSS 6.2 (medium): Improper handling of insufficient privileges vulnerability in TalkbackSE prior to version Android 14 allows local attackers to modify…
CVE-2024-34606 — CVSS 6.2 (medium): Improper access control in SmartThingsService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting…
CVE-2024-20884 — CVSS 6.2 (medium): Incorrect use of privileged API vulnerability in getSemBatteryUsageStats in BatteryStatsService prior to SMR Jun-2024 Release 1 allows…
CVE-2024-34605 — CVSS 6.2 (medium): Improper access control in SamsungHealthService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting…
CVE-2024-34604 — CVSS 6.2 (medium): Improper access control in LedCoverService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting…
CVE-2024-34654 — CVSS 6.2 (medium): Improper Export of android application component in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access files with My…
CVE-2023-30659 — CVSS 6.2 (medium): Improper input validation vulnerability in Transaction prior to SMR Jul-2023 Release 1 allows local attackers to launch privileged…
CVE-2024-34651 — CVSS 6.2 (medium): Improper authorization in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access restricted data in My Files.
CVE-2023-30657 — CVSS 6.2 (medium): Improper input validation vulnerability in EnhancedAttestationResult prior to SMR Jul-2023 Release 1 allows local attackers to launch…
CVE-2025-21002 — CVSS 6.2 (medium): Improper access control in LeAudioService prior to SMR Jul-2025 Release 1 allows local attackers to manipulate broadcasting Auracast.
CVE-2024-34637 — CVSS 6.2 (medium): Improper access control in WindowManagerService prior to SMR Sep-2024 Release 1 in Android 12, and SMR Jun-2024 Release 1 in Android 13 and…
CVE-2023-30662 — CVSS 6.2 (medium): Exposure of Sensitive Information vulnerability in getChipIds in UwbAospAdapterService prior to SMR Jul-2023 Release 1 allows local…
CVE-2023-30661 — CVSS 6.2 (medium): Exposure of Sensitive Information vulnerability in getChipInfos in UwbAospAdapterService prior to SMR Jul-2023 Release 1 allows local…
CVE-2024-34609 — CVSS 6.2 (medium): Improper access control in VoiceNoteService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting…
CVE-2023-30713 — CVSS 6.2 (medium): Improper privilege management vulnerability in FolderLockNotifier in One UI Home prior to SMR Sep-2023 Release 1 allows local attackers to…
CVE-2023-42531 — CVSS 6.2 (medium): Improper access control vulnerability in SmsController prior to SMR Nov-2023 Release1 allows local attackers to bypass restrictions on…
CVE-2025-21080 — CVSS 6.2 (medium): Improper export of android application components in Dynamic Lockscreen prior to SMR Dec-2025 Release 1 allows local attackers to access…
CVE-2024-34608 — CVSS 6.2 (medium): Improper access control in PaymentManagerService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting…
CVE-2025-20981 — CVSS 6.2 (medium): Improper access control in AudioService prior to SMR Jun-2025 Release 1 allows local attackers to access sensitive information.
CVE-2023-21440 — CVSS 6.2 (medium): Improper access control vulnerability in WindowManagerService prior to SMR Feb-2023 Release 1 allows attackers to take a screen capture.
CVE-2025-21000 — CVSS 6.2 (medium): Improper privilege management in Bluetooth prior to SMR Jul-2025 Release 1 allows local attackers to enable Bluetooth.
CVE-2023-30642 — CVSS 6.2 (medium): Improper privilege management vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to call…
CVE-2024-34607 — CVSS 6.2 (medium): Improper access control in SamsungNotesService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting…
CVE-2024-20806 — CVSS 6.2 (medium): Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data.
CVE-2024-34662 — CVSS 6.2 (medium): Improper access control in ActivityManager prior to SMR Oct-2024 Release 1 in select Android 12, 13 and SMR Sep-2024 Release 1 in select…
CVE-2023-30660 — CVSS 6.2 (medium): Exposure of Sensitive Information vulnerability in getDefaultChipId in UwbAospAdapterService prior to SMR Jul-2023 Release 1 allows local…
CVE-2024-34655 — CVSS 6.2 (medium): Incorrect use of privileged API in UniversalCredentialManager prior to SMR Sep-2024 Release 1 allows local attackers to access privileged…
CVE-2025-21041 — CVSS 6.2 (medium): Insecure Storage of Sensitive Information in Secure Folder prior to Android 16 allows local attackers to access sensitive information.
CVE-2023-21458 — CVSS 6.2 (medium): Improper privilege management vulnerability in PhoneStatusBarPolicy in System UI prior to SMR Mar-2023 Release 1 allows attacker to turn…
CVE-2025-20944 — CVSS 6.2 (medium): Out-of-bounds read in parsing audio data in libsavsac.so prior to SMR Apr-2025 Release 1 allows local attackers to read out-of-bounds…
CVE-2024-20883 — CVSS 6.2 (medium): Incorrect use of privileged API vulnerability in registerBatteryStatsCallback in BatteryStatsService prior to SMR Jun-2024 Release 1 allows…
CVE-2025-20941 — CVSS 6.2 (medium): Improper access control in InputManager to SMR Apr-2025 Release 1 allows local attackers to access the scancode of specific input device.
CVE-2023-21446 — CVSS 6.2 (medium): Improper input validation in MyFiles prior to version 12.2.09 in Android R(11), 13.1.03.501 in Android S( 12) and 14.1.00.422 in Android…
CVE-2025-21001 — CVSS 6.2 (medium): Improper access control in LeAudioService prior to SMR Jul-2025 Release 1 allows local attackers to stop broadcasting Auracast.
CVE-2024-20876 — CVSS 6.1 (medium): Improper input validation in libsheifdecadapter.so prior to SMR Jun-2024 Release 1 allows local attackers to lead to memory corruption.
CVE-2024-34645 — CVSS 6.1 (medium): Improper input validation in ThemeCenter prior to SMR Sep-2024 Release 1 allows physical attackers to install privileged applications.