Samsung Galaxy_gear
11 CVEs affecting Samsung Galaxy_gear. Latest disclosed: 2020-01-22. Critical: 1, High: 6.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-16272 | Critical | 9.8 | 2020-01-22 | The wpa_supplicant system service in Samsung Galaxy Gear series allows an unprivileged process to fully control the Wi-Fi interface, due to the lack of its D-B… |
CVE-2018-16263 | High | 8.8 | 2020-01-22 | The PulseAudio system service in Tizen allows an unprivileged process to control its A2DP MediaEndpoint, due to improper D-Bus security policy configurations… |
CVE-2018-16262 | High | 8.8 | 2020-01-22 | The pkgmgr system service in Tizen allows an unprivileged process to perform package management actions, due to improper D-Bus security policy configurations… |
CVE-2018-16267 | High | 8.1 | 2020-01-22 | The system-popup system service in Tizen allows an unprivileged process to perform popup-related system actions, due to improper D-Bus security policy configur… |
CVE-2018-16266 | High | 8.1 | 2020-01-22 | The Enlightenment system service in Tizen allows an unprivileged process to fully control or capture windows, due to improper D-Bus security policy configurati… |
CVE-2018-16270 | High | 7.5 | 2020-01-22 | Samsung Galaxy Gear series before build RE2 includes the hcidump utility with no privilege or permission restriction. This allows an unprivileged process to du… |
CVE-2018-16269 | High | 7.5 | 2020-01-22 | The wnoti system service in Samsung Galaxy Gear series allows an unprivileged process to take over the internal notification message data, due to improper D-Bu… |
CVE-2018-16271 | Medium | 6.5 | 2020-01-22 | The wemail_consumer_service (from the built-in application wemail) in Samsung Galaxy Gear series allows an unprivileged process to manipulate a user's mailbox… |
CVE-2018-16265 | Medium | 6.5 | 2020-01-22 | The bt/bt_core system service in Tizen allows an unprivileged process to create a system user interface and control the Bluetooth pairing process, due to impro… |
CVE-2018-16264 | Medium | 6.5 | 2020-01-22 | The BlueZ system service in Tizen allows an unprivileged process to partially control Bluetooth or acquire sensitive information, due to improper D-Bus securit… |
CVE-2018-16268 | Medium | 4.3 | 2020-01-22 | The SoundServer/FocusServer system services in Tizen allow an unprivileged process to perform media-related system actions, due to improper D-Bus security poli… |