|
266751
|
9.8 |
CRITICAL
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with M(6.0) software. There is a heap-based buffer overflow in tlc_server. The Samsung IDs are SVE-2016-7220 and SVE-2016-7225 (November 2016).
|
CWE-787
Out-of-bounds Write
|
CVE-2016-11033
|
2024-11-21 11:45 |
2020-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266752
|
5.3 |
MEDIUM
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with M(6.0) software. An attacker can disable all Sound functionality by broadcasting an unprotected intent. The Samsung IDs are SVE-2016-7179 and SV…
|
CWE-20
Improper Input Validation
|
CVE-2016-11032
|
2024-11-21 11:45 |
2020-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266753
|
7.5 |
HIGH
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. AntService allows a system_server crash and reboot. The Samsung ID is SVE-2016-7044 (November 2016).
|
CWE-20
Improper Input Validation
|
CVE-2016-11031
|
2024-11-21 11:45 |
2020-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266754
|
8.1 |
HIGH
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) (with Hrm sensor support) software. The sysfs of the MAX86902 sensor driver does not prevent concurrent access, …
|
CWE-362
CWE-787
Race Condition
Out-of-bounds Write
|
CVE-2016-11030
|
2024-11-21 11:45 |
2020-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266755
|
7.5 |
HIGH
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with L(5.0/5.1), M(6.0), and N(7.0) software. Attackers can read the password of the Mobile Hotspot in the log because of an unprotected intent. The …
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2016-11029
|
2024-11-21 11:45 |
2020-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266756
|
9.8 |
CRITICAL
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with software through 2016-09-13 (Exynos AP chipsets). There is a stack-based buffer overflow in the OTP TrustZone trustlet. The Samsung IDs are SVE-…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-11028
|
2024-11-21 11:45 |
2020-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266757
|
2.4 |
LOW
Physics
|
google
|
android
|
An issue was discovered on Samsung mobile devices with M(6.0) software. In the Shade Locked state, a physically proximate attacker can read notifications on the lock screen. The Samsung ID is SVE-201…
|
CWE-200
Information Exposure
|
CVE-2016-11027
|
2024-11-21 11:45 |
2020-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266758
|
7.5 |
HIGH
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. BootReceiver allows attackers to trigger a system crash because of incorrect exception handling. The S…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2016-11026
|
2024-11-21 11:45 |
2020-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266759
|
9.8 |
CRITICAL
Network
|
google
|
android
|
An issue was discovered on Samsung mobile devices with software through 2016-09-13 (Exynos AP chipsets). There is a memcpy heap-based buffer overflow in the OTP service. The Samsung ID is SVE-2016-71…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-11025
|
2024-11-21 11:45 |
2020-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266760
|
4.6 |
MEDIUM
Physics
|
google
|
android
|
An issue was discovered on Samsung mobile devices with software through 2015-11-11 (supporting FRP/RL). There is a Factory Reset Protection (FRP) bypass. The Samsung ID is SVE-2015-5131 (January 2016…
|
CWE-20
Improper Input Validation
|
CVE-2016-11053
|
2024-11-21 11:45 |
2020-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
