|
250301
|
5.3 |
MEDIUM
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) software. There is an arbitrary write in a trustlet. The Samsung ID is SVE-2017-8893 (August 2017).
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2017-18657
|
2024-11-21 12:20 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250302
|
5.3 |
MEDIUM
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) software. There is a buffer over-read in a trustlet. The Samsung ID is SVE-2017-8890 (August 2017).
|
CWE-125
Out-of-bounds Read
|
CVE-2017-18656
|
2024-11-21 12:20 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250303
|
9.8 |
CRITICAL
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) software. There is a stack-based buffer overflow with resultant memory corruption in a trustlet. The Samsung IDs are SVE-2017-…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-18655
|
2024-11-21 12:20 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250304
|
7.5 |
HIGH
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with M(6.0) and N(7.0, 7.1) software. An unauthenticated attacker can register a new security certificate. The Samsung ID is SVE-2017-9659 (September…
|
CWE-287
Improper Authentication
|
CVE-2017-18654
|
2024-11-21 12:20 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250305
|
4.3 |
MEDIUM
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.x) software. The Email application allows attackers to send emails on behalf of any user via a broadcasted …
|
NVD-CWE-noinfo
|
CVE-2017-18653
|
2024-11-21 12:20 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250306
|
9.8 |
CRITICAL
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) software. SVoice allows arbitrary code execution by changing dynamic libraries. The Samsung ID is SVE-2017-9299 (September 201…
|
CWE-74
Injection
|
CVE-2017-18652
|
2024-11-21 12:20 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250307
|
7.5 |
HIGH
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with M(6.x) and N(7.x) software. There is an Integer Overflow in process_M_SetTokenTUIPasswd during handling of a trusted application, leading to mem…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-18651
|
2024-11-21 12:20 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250308
|
7.5 |
HIGH
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with N(7.x) software. There is a WifiStateMachine IllegalArgumentException and reboot if a malformed wpa_supplicant.conf is read. The Samsung ID is S…
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2017-18650
|
2024-11-21 12:20 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250309
|
7.2 |
HIGH
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with N(7.x) software. An attacker can boot a device with root privileges because the bootloader for the Qualcomm MSM8998 chipset lacks an integrity c…
|
CWE-354
Improper Validation of Integrity Check Value
|
CVE-2017-18649
|
2024-11-21 12:20 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250310
|
9.1 |
CRITICAL
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with KK(4.4.x), L(5.x), M(6.x), and N(7.x) software. Arbitrary file read/write operations can occur in the locked state via a crafted MTP command. Th…
|
CWE-20
Improper Input Validation
|
CVE-2017-18648
|
2024-11-21 12:20 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
