An improper input validation vulnerability in scmn_mfal_read() in libsapeextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process.
Max CVSS
9.8
Published
2021-06-11
Updated
2022-09-23
EPSS
0.12%
An improper input validation vulnerability in sdfffd_parse_chunk_PROP() with Sample Rate Chunk in libsdffextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process.
Max CVSS
9.8
Published
2021-06-11
Updated
2022-10-25
EPSS
0.12%
An improper input validation vulnerability in sdfffd_parse_chunk_PROP() in libsdffextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process.
Max CVSS
9.8
Published
2021-06-11
Updated
2022-09-23
EPSS
0.11%
An improper input validation vulnerability in sdfffd_parse_chunk_FVER() in libsdffextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process.
Max CVSS
9.8
Published
2021-06-11
Updated
2022-09-23
EPSS
0.11%
An improper input validation vulnerability in sflacfd_get_frm() in libsflacextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process.
Max CVSS
10.0
Published
2021-06-11
Updated
2022-09-23
EPSS
0.12%
Improper caller check vulnerability in Knox Core prior to SMR MAY-2021 Release 1 allows attackers to install arbitrary app.
Max CVSS
7.1
Published
2021-06-11
Updated
2021-06-16
EPSS
0.04%
Improper running task check in S Secure prior to SMR MAY-2021 Release 1 allows attackers to use locked app without authentication.
Max CVSS
6.1
Published
2021-06-11
Updated
2021-06-17
EPSS
0.05%
Intent redirection vulnerability in PhotoTable prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action.
Max CVSS
4.0
Published
2021-06-11
Updated
2021-06-16
EPSS
0.06%
Intent redirection vulnerability in Secure Folder prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action.
Max CVSS
4.0
Published
2021-06-11
Updated
2021-06-16
EPSS
0.06%
Improper protection of backup path configuration in Samsung Dex prior to SMR MAY-2021 Release 1 allows local attackers to get sensitive information via changing the path.
Max CVSS
5.5
Published
2021-06-11
Updated
2021-06-16
EPSS
0.04%
Improper sanitization of incoming intent in SecSettings prior to SMR MAY-2021 Release 1 allows local attackers to get permissions to access system uid data.
Max CVSS
6.6
Published
2021-06-11
Updated
2021-06-16
EPSS
0.04%

CVE-2021-25394

Known Exploited Vulnerability
A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows arbitrary write given a radio privilege is compromised.
Max CVSS
6.4
Published
2021-06-11
Updated
2021-06-16
EPSS
0.08%
KEV Added
2023-06-29

CVE-2021-25395

Known Exploited Vulnerability
A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised.
Max CVSS
6.4
Published
2021-06-11
Updated
2021-06-16
EPSS
0.24%
KEV Added
2023-06-29
An improper input validation vulnerability in NPU firmware prior to SMR MAY-2021 Release 1 allows arbitrary memory write and code execution.
Max CVSS
6.7
Published
2021-06-11
Updated
2021-06-16
EPSS
0.04%
An improper access control vulnerability in TelephonyUI prior to SMR MAY-2021 Release 1 allows local attackers to write arbitrary files of telephony process via untrusted applications.
Max CVSS
6.8
Published
2021-06-11
Updated
2022-10-25
EPSS
0.04%
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!