Samsung Samsung_mobile
20 CVEs affecting Samsung Samsung_mobile. Latest disclosed: 2017-08-24. Critical: 4, High: 10.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-5538 | Critical | 9.8 | 2017-03-23 | The kbase_dispatch function in arm/t7xx/r5p0/mali_kbase_core_linux.c in the GPU driver on Samsung devices with M(6.0) and N(7.0) software and Exynos AP chipset… |
CVE-2016-9967 | Critical | 9.8 | 2016-12-16 | Lack of appropriate exception handling in some receivers of the Telecom application on Samsung Note devices with L(5.0/5.1), M(6.0), and N(7.0) software allows… |
CVE-2016-9966 | Critical | 9.8 | 2016-12-16 | Lack of appropriate exception handling in some receivers of the Telecom application on Samsung Note devices with L(5.0/5.1), M(6.0), and N(7.0) software allows… |
CVE-2016-9965 | Critical | 9.8 | 2016-12-16 | Lack of appropriate exception handling in some receivers of the Telecom application on Samsung Note devices with L(5.0/5.1), M(6.0), and N(7.0) software allows… |
CVE-2016-4038 | High | 7.8 | 2017-02-01 | Array index error in the msm_sensor_config function in kernel/SM-G9008V_CHN_KK_Opensource/Kernel/drivers/media/platform/msm/camera_v2/sensor/msm_sensor.c in Sa… |
CVE-2016-6527 | High | 7.8 | 2017-01-18 | The SmartCall Activity component in Telecom application on Samsung Note device L(5.0/5.1) and M(6.0) allows attackers to cause a denial of service (crash and r… |
CVE-2016-6526 | High | 7.8 | 2017-01-18 | The SpamCall Activity component in Telecom application on Samsung Note device L(5.0/5.1) and M(6.0) allows attackers to cause a denial of service (crash and re… |
CVE-2017-7978 | High | 7.5 | 2017-04-19 | Samsung Android devices with L(5.0/5.1), M(6.0), and N(7.x) software allow attackers to obtain sensitive information by reading a world-readable log file after… |
CVE-2016-4547 | High | 7.5 | 2017-02-13 | Samsung devices with Android KK(4.4), L(5.0/5.1), or M(6.0) allow attackers to cause a denial of service (system crash) via a crafted system call to TvoutServi… |
CVE-2017-5351 | High | 7.5 | 2017-01-12 | Samsung Note devices with KK(4.4), L(5.0/5.1), and M(6.0) software allow attackers to crash the system by creating an arbitrarily large number of active VR ser… |
CVE-2017-5350 | High | 7.5 | 2017-01-12 | Samsung Note devices with L(5.0/5.1), M(6.0), and N(7.0) software allow attackers to crash systemUI by leveraging incomplete exception handling. The Samsung ID… |
CVE-2016-9277 | High | 7.5 | 2016-11-11 | Integer overflow in SystemUI in KK(4.4) and L(5.0/5.1) on Samsung Note devices allows attackers to cause a denial of service (UI restart) via vectors involving… |
CVE-2016-7160 | High | 7.5 | 2016-11-03 | A vulnerability on Samsung Mobile M(6.0) devices exists because external access to SystemUI activities is not properly restricted, leading to a SystemUI crash… |
CVE-2015-7891 | High | 7.0 | 2017-08-02 | Race condition in the ioctl implementation in the Samsung Graphics 2D driver (aka /dev/fimg2d) in Samsung devices with Android L(5.0/5.1) allows local users to… |
CVE-2015-7896 | Medium | 6.5 | 2017-08-24 | LibQJpeg in the Samsung Galaxy S6 before the October 2015 MR allows remote attackers to cause a denial of service (memory corruption and SIGSEGV) via a crafted… |
CVE-2015-7898 | Medium | 5.5 | 2017-06-27 | Samsung Gallery in the Samsung Galaxy S6 allows local users to cause a denial of service (process crash). |
CVE-2015-7895 | Medium | 5.5 | 2017-06-27 | Samsung Gallery on the Samsung Galaxy S6 allows local users to cause a denial of service (process crash). |
CVE-2016-4546 | Medium | 5.5 | 2017-02-13 | Samsung devices with Android KK(4.4) or L(5.0/5.1) allow local users to cause a denial of service (IAndroidShm service crash) via crafted data in a service cal… |
CVE-2017-5217 | Medium | 5.5 | 2017-01-09 | Installing a zero-permission Android application on certain Samsung Android devices with KK(4.4), L(5.0/5.1), and M(6.0) software can continually crash the sys… |
CVE-2016-9567 | Medium | 5.5 | 2016-11-23 | The mDNIe system service on Samsung Mobile S7 devices with M(6.0) software does not properly restrict setmDNIeScreenCurtain API calls, enabling attackers to co… |