Hírolvasó

NVD: fully analised CVE · 2022. december 8.

CVE-2022-39898 (android)

Improper access control vulnerability in IIccPhoneBook prior to SMR Dec-2022 Release 1 allows attackers to access some information of usim.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39899 (android)

Improper authentication vulnerability in Samsung WindowManagerService prior to SMR Dec-2022 Release 1 allows attacker to send the input event using S Pen gesture.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39900 (android)

Improper access control vulnerability in Nice Catch prior to SMR Dec-2022 Release 1 allows physical attackers to access contents of all toast generated in the application installed in Secure Folder through Nice Catch.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39901 (exynos_firmware)

Improper authentication in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to disable the network traffic encryption between UE and gNodeB.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39903 (android)

Improper access control vulnerability in RCS call prior to SMR Dec-2022 Release 1 allows local attackers to access RCS incoming call number.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39904 (android)

Exposure of Sensitive Information vulnerability in Samsung Settings prior to SMR Dec-2022 Release 1 allows local attackers to access the Network Access Identifier via log.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39906 (android)

Improper access control vulnerability in SecTelephonyProvider prior to SMR Dec-2022 Release 1 allows attackers to access message information.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39907 (android)

Integer overflow vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds Write.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39908 (android)

TOCTOU vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds Write.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39909 (gear_iconx_pc_manager)

Insufficient verification of data authenticity vulnerability in Samsung Gear IconX PC Manager prior to version 2.1.221019.51 allows local attackers to create arbitrary file using symbolic link.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39910 (pass)

Improper access control vulnerability in Samsung Pass prior to version 4.0.06.7 allow physical attackers to access data of Samsung Pass on a certain state of an unlocked device using pop-up view.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39911 (pass)

Improper check or handling of exceptional conditions vulnerability in Samsung Pass prior to version 4.0.06.1 allows attacker to access Samsung Pass.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39912 (android)

Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in PersonaManagerService prior to Android T(13) allows local attackers to set some setting value in Secure folder.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39902 (exynos_firmware)

Improper authorization in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to get sensitive information including IMEI via emergency call.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39905 (android)

Implicit intent hijacking vulnerability in Telecom application prior to SMR Dec-2022 Release 1 allows attacker to access sensitive information via implicit intent.
NVD: fully analised CVE · 2022. december 8.

CVE-2022-39897 (android)

Exposure of Sensitive Information vulnerability in kernel prior to SMR Dec-2022 Release 1 allows attackers to access the kernel address information via log.
NVD: all CVE · 2022. december 8.

CVE-2022-39897

Exposure of Sensitive Information vulnerability in kernel prior to SMR Dec-2022 Release 1 allows attackers to access the kernel address information via log.
NVD: all CVE · 2022. december 8.

CVE-2022-39898

Improper access control vulnerability in IIccPhoneBook prior to SMR Dec-2022 Release 1 allows attackers to access some information of usim.
NVD: all CVE · 2022. december 8.

CVE-2022-39899

Improper authentication vulnerability in Samsung WindowManagerService prior to SMR Dec-2022 Release 1 allows attacker to send the input event using S Pen gesture.
NVD: all CVE · 2022. december 8.

CVE-2022-39900

Improper access control vulnerability in Nice Catch prior to SMR Dec-2022 Release 1 allows physical attackers to access contents of all toast generated in the application installed in Secure Folder through Nice Catch.