Samsung Mobile Samsung Mobile Devices vR(11.0) - 7 CVEs

CVE-2022-22263

Unprotected dynamic receiver in SecSettings prior to SMR Jan-2022 Release 1 allows untrusted applications to launch arbitrary activity.

MEDIUM CVSS 4.0 Published Jan 07, 2022

CVE-2021-25482

SQL injection vulnerabilities in CMFA framework prior to SMR Oct-2021 Release 1 allow untrusted application to overwrite some CMFA framework information.

MEDIUM CVSS 5.9 Published Oct 06, 2021

Assuming a shell privilege is gained, an improper exception handling for multi_sim_bar_hide_by_meadia_full value in SystemUI prior to SMR Oct-2021 Release 1 allows an attacker to cause a permanent denial of service in user device before factory reset.

MEDIUM CVSS 4.4 Published Oct 06, 2021

CVE-2021-25391

Intent redirection vulnerability in Secure Folder prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action.

MEDIUM CVSS 4.0 Published Jun 11, 2021

CVE-2021-25388

Improper caller check vulnerability in Knox Core prior to SMR MAY-2021 Release 1 allows attackers to install arbitrary app.

HIGH CVSS 7.1 Published Jun 11, 2021

CVE-2021-25410

Improper access control of a component in CallBGProvider prior to SMR JUN-2021 Release 1 allows local attackers to access arbitrary files with an escalated privilege.

UNKNOWN Published Jun 11, 2021

CVE-2021-25364

A pendingIntent hijacking vulnerability in Secure Folder prior to SMR APR-2021 Release 1 allows unprivileged applications to access contact information.

MEDIUM CVSS 4.0 Published Apr 09, 2021

Version R(11.0)

Known Vulnerabilities