Samsung Luki w zabezpieczeniach

Oś czasu

Rodzaj

Produkt

Samsung Smart Phone281
Samsung Mobile Devices247
Samsung SmartThings Hub STH-ETH-25037
Samsung Account26
Samsung Mobile Device26

Przeciwdziałanie

Official Fix974
Temporary Fix0
Workaround10
Unavailable10
Not Defined405

Wykorzystywanie

High5
Functional2
Proof-of-Concept30
Unproven4
Not Defined1358

Wektor dostępu

Not Defined0
Physical129
Local733
Adjacent132
Network405

Uwierzytelnianie

Not Defined0
High101
Low778
None520

Interakcja z użytkownikiem

Not Defined0
Required133
None1266

C3BM Index

CVSSv3 Base

≤10
≤29
≤351
≤4218
≤5243
≤6313
≤7259
≤8154
≤9122
≤1030

CVSSv3 Temp

≤10
≤29
≤356
≤4223
≤5247
≤6317
≤7271
≤8130
≤9118
≤1028

VulDB

≤10
≤222
≤3100
≤4318
≤5148
≤6451
≤7121
≤8197
≤920
≤1022

NVD

≤10
≤20
≤327
≤491
≤548
≤6150
≤778
≤8300
≤951
≤10143

CNA

≤10
≤219
≤322
≤4196
≤5114
≤6138
≤7127
≤876
≤950
≤1025

Sprzedawca

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k690
<2k440
<5k260
<10k4
<25k3
<50k0
<100k1
≥100k1

Wykorzystaj dzisiaj

<1k1354
<2k36
<5k7
<10k1
<25k0
<50k1
<100k0
≥100k0

Wykorzystaj wielkość rynku

🔴 CTI Zajęcia

Affected Products (430): 840 EVO (2), 850 EVO (1), 850 Pro (2), A3 (1), A5 (1), A7 (1), A8+ (1), APAService (1), AR Emoji (1), AR Emoji Editor (1), Accessibility (1), Account (26), ActivityManagerService (1), ActivityMetricsLogger (1), Android USB Driver Windows Installer (1), ApkInstaller (1), AppLock (3), Apps Edge Application (1), Assistant (1), Automotive Processor (6), BL31 (1), Baseband (1), Billing (1), Bixby (2), Bixby Routines (1), BixbyTouch (2), Bixby Vision (2), Bixby Voice (3), Blockchain Keystore (7), BlockchainTZService (2), Blockchain Wallet (1), Bluetooth (4), Bluetooth API (1), BluetoothSettingsProvider (2), CMFA Framework (1), CPLC (1), CVA6 (1), Calendar (2), Camera (2), Cameralyzer (2), CertInstaller (1), Charm (5), Checkout (2), Chromebox 3 (1), Cloud (4), Contacts (1), Contacts Provider (1), Contents To Window (1), Core Service (1), Create Movie (1), Crucial MX100 (1), Crucial MX200 (1), Crucial MX300 (1), Customization Service (1), DDR4 (1), DPU Driver (1), DSP Driver (5), DSP Kernel Driver (1), DSP driver (1), DVR (1), DVR SHR2040 (1), DVR Web Viewer (1), Data Management Server (1), Data Store (1), DeX Home (1), DeX for PC (1), DesktopSystemUI (1), Device (3), Devices (11), Dex (1), Dex for PC (2), Dialer (2), Dialer Application (1), DisplayManagerService (1), Display Solutions App (1), DisplayToast (1), DofViewer (1), Dressroom (1), Drive Manager (1), EasySetup (1), Editor Lite (2), Email (9), Escargot (1), Experience Service (1), Exynos (3), Exynos 850 (9), Exynos 980 (21), Exynos 1080 (20), Exynos 1280 (10), Exynos 1330 (4), Exynos 1380 (4), Exynos 2100 (5), Exynos 2200 (12), Exynos 4412 (2), Exynos 9110 (10), Exynos 9610 (3), Exynos 9810 (1), Exynos 9820 (4), Exynos Auto T512 (1), Exynos Auto T5123 (16), Exynos Auto T5124 (1), Exynos Auto T5125 (1), Exynos Auto T5126 (1), Exynos Baseband (1), Exynos CP Booting Driver (1), Exynos CP Chipset (2), Exynos Mobile Processor (8), Exynos Mobile Processor 980 (1), Exynos Mobile Processor 2100 (1), Exynos Modem 5123 (18), Exynos Modem 5300 (25), Exynos W920 (8), Exynos Wearable Processor (1), Exynos fimg2d Driver (3), FactoryAirCommnadManger (2), FactoryCamera (3), FactoryCameraFB (2), FeedsInfo (1), FilterProvider (2), Find My Mobile (4), Find my Mobile (1), Fingerprint Matching Algorithm (1), Firewall App (1), Flow (3), Flow Application (1), Flow Mobile Application (1), Flow for PC (1), GALAXY Apps (5), Galaxy (13), Galaxy A3 (1), Galaxy Buds Pro Manage (1), Galaxy Friends (1), Galaxy Gear (4), Galaxy Note 2 (2), Galaxy Note 4 (1), Galaxy Note 5 (1), Galaxy Note 8 (1), Galaxy S (2), Galaxy S2 I9100XWKI4 (1), Galaxy S3 (6), Galaxy S3 Plugin (1), Galaxy S3 i9305 (2), Galaxy S4 (8), Galaxy S5 (1), Galaxy S6 (14), Galaxy S6 Edge (2), Galaxy S8 (2), Galaxy S8 Plus (2), Galaxy S8+ (1), Galaxy S9 (3), Galaxy S10 (2), Galaxy S20 (1), Galaxy S21 (1), Galaxy S22 (1), Galaxy Store (20), Galaxy Themes (3), Galaxy Watch3 PlugIn (1), Galaxy Watch3 Plugin (1), Galaxy Watch PlugIn (1), Galaxy Watch Plugin (2), Galaxy Wearable (1), Gallery (5), GameHomeCN (1), GameLauncher (1), Game Launcher (1), Game Optimizing Service (1), Gear (1), Gear IconX PC Manager (2), Gear S Plugin (1), Global (1), Group Sharing (4), HDCP (1), HDCP LDFW (1), Harman AMX N-Series (1), Health (8), ICCC TA (1), ION driver (1), IP Camera (1), ImsService (1), InputManagerService (1), Internet (21), Internet Browser (4), J2 Pro (1), J3 (2), J4 (2), J5 (2), J6 (2), J7 Duo (1), J7 Max (1), J7 Neo (4), J7 Pro (2), KIES (2), KME Module (1), KNOX (4), Keyboard (1), KfaOptions (1), Kies (3), Kies Air (2), Knox Guard (2), Knox Manage (1), KnoxSDK (1), Knox VPN (1), LDFW (2), LED 3D Smart TV (1), LPDDR4 (1), LSOItemData (1), Laser Printers (1), LauncherProvider (1), Link to Windows Service (1), Lock App (1), Low-Battery Dumpstate Log (1), MFC Driver (1), ML-85P Printer Driver (1), Magician (1), Magician PC Software (1), Managed Provisioning (1), Mask App (1), MediaMonitorDimension (1), MediaMonitorEvent (1), Mediatek RRC Protocol Stack (1), Members (8), Members samsungrewards Scheme for Deeplink (1), Memory Card & UFD Authentication Utility PC Software (1), Message (1), Mobile (1), Mobile Device (26), Mobile Devices (244), Mobile Phone (4), Mobile Print (1), Mobile S7 (1), MobileWips App (1), Modem Interface Driver (3), Modem for Exynos Modem 5123 (6), MyFiles (3), My Files (1), NET-i viewer (4), NPU Driver (4), NPU Firmware (1), NT14U (1), NVR (1), Nearby Device Scanning (2), NetworkPolicyManagerService (1), Nexus (1), Note (15), Note 3 (5), Note 10 (1), Note 20 (1), Notes (5), One Hand Operation (1), One UI Home (2), PENUP (1), PM851 (2), PS50C7700 (1), PackageInstallerCHN (1), PackageManager (1), Pass (11), Pay (5), Pay Mini Application (3), PersonaManagerService (2), Phone (4), Portable SSD T5 PC (1), Printer (1), Printer Software Package (1), Product (1), Property Settings (1), Push Service (2), Qualcomm Modem (1), Quick Share (2), QuickShare (1), Quick Share Agent (1), Quram Agif Library (2), RKP (1), RKP API (1), Reminder (1), RemoteViews (1), S3NRN4V (1), S3NRN82 (1), S3NSEN4 (1), S3NSN4V (1), S4 GT-I9500 (2), S6 Edge (2), S7 (3), S7 Edge (4), S9+ (1), S10 (1), SAssistant (1), S Assistant (2), SBeam (1), SCX-6x55X (1), SCX-824 (1), SCX-6545X (1), SDP SDK (1), SECRIL (1), SELinux Policy (1), SEM TA (1), SEN82AB (1), SMP SDK (1), SRN-1670D (4), SReminder (1), SSHDCPAPP TA (2), S Secure (3), Samsung Account Web SDK (1), SamsungCapture (1), SamsungContacts (1), SamsungDive (2), Samsung Email (1), Samsung Pass (3), SamsungRecovery (1), Samsung Security Manager (1), ScanPool (1), Scx-4200_driver (1), Search Widget (1), SecSettings (1), SecSettingsetelligence (1), SecTelephonyProvider (1), Seceon aiSIEM (1), Secure Folder (2), Security Manager (1), Security Mode Command Process (1), Security Supporter (1), SemBlurInfo (1), SemIWCMonitor (1), SemRewardManager (1), SemSuspendDialogInfo (1), SemWifiApBroadcastReceiver (1), Settings (2), Setup Wizard (1), Shannon Baseband (1), ShareLive (1), Slow Motion Editor (1), Smart Capture (1), SmartEther SS6215S Switch (1), Smart Manager (1), Smart Phone (282), Smart Switch (1), Smart Switch PC (4), SmartTagPlugin (2), Smart Things (4), SmartThings (13), SmartThings Hub (3), SmartThings Hub STH-ETH-250 (37), Smart Touch Call (1), Smart View (1), SmartViewer (4), Smart Viewer (2), Smartphone (18), StickerCenter (1), Store (1), StroageManager (1), StroageManagerService (1), SyncThru 6 (1), SyncThru Web Service SPL (1), Syncthru Web Service (2), SystemUI (2), T3 (1), T5 (1), TEEGRIS Secure OS (1), TIMA Trustlet (1), TV (4), Tab A (1), Tags (1), Telephony (1), TelephonyManager (1), TencentWifiSecurity (1), Text-to-speech Engine App (1), Themes (1), Tizen (13), TizenRT (4), UE40D7000 (1), UE55ES6800 (1), UEFI Firmware (1), UPHelper (1), UPHelper Library (1), USB Driver Windows Installer for Mobile Phones (1), UWB Firmware (1), UWB Stack (1), Update (2), Update Setup (1), VerifyCredentialResponse (1), Video Player (1), Vision DSP Kernel Driver (1), Voice Note (1), Voice Recorder (3), Watch Active2 PlugIn (1), Watch Active2 Plugin (1), Watch Active PlugIn (1), Watch Active Plugin (1), Waterplugin (3), Wear OS (5), Wearable Manager Installer (1), Weather (1), Weather App (1), Wi-Fi Service (1), Widevine TA Log (1), Widevine Trustlet (2), X10P (1), X12 (1), X14H (1), X14J (1), X7400GX Syncthru (4), XCover4 (3), XCover 4 (1), Xpress M288OFW (1), aviextractor (3), hdcp2 device node (1), iPOLiS Device Manager (3), ipcdump (1), j3popeltecan (1), j7popeltemtr (1), keymaster (1), libsaacextractor.so (1), libsapeextractor (4), libsaviextractor.so Library (1), libsflvextractor (1), libsimba (15), libsmkvextractor (3), libswmfextractor (2), livfivextractor (1), m2m1shot Driver Framework (1), mTower (13), media.extractor Library (1), on7xeltelgt (1), on7xelteskt (1), ril Property Setting (1), sdp Driver (1), sec_log (1), softsimd (1), sww-3400rw (1), wmfextractor (1), wssyncmlnps (1)

Link to Vendor Website: https://www.samsung.com/

OpublikowanoBaseTempSłaby punktProdWykPrzCTIEPSSCVE
2024-03-054.03.9Samsung Devices pub_crypto_recv_msg race conditionNieznanyNot DefinedOfficial Fix0.040.00043CVE-2024-20833
2024-03-055.65.5Samsung Devices libsec-ril IpcTxSndSetLoopbackCtrl memory corruptionNieznanyNot DefinedOfficial Fix0.030.00043CVE-2023-52432
2024-03-055.25.1Samsung Account privilege escalationNieznanyNot DefinedOfficial Fix0.040.00043CVE-2024-20841
2024-03-056.05.9Samsung Internet privilege escalationNieznanyNot DefinedOfficial Fix0.040.00043CVE-2024-20838
2024-03-053.33.2Samsung Devices libsubextractor.so ssmis_get_frm information disclosureNieznanyNot DefinedOfficial Fix0.020.00043CVE-2024-20836
2024-03-054.74.6Samsung Devices CustomFrequencyManagerService privilege escalationNieznanyNot DefinedOfficial Fix0.020.00043CVE-2024-20835
2024-03-053.33.2Samsung Devices WlanTest information disclosureNieznanyNot DefinedOfficial Fix0.020.00043CVE-2024-20834
2024-03-055.35.2Samsung Devices AppLock privilege escalationNieznanyNot DefinedOfficial Fix0.030.00043CVE-2024-20830
2024-03-056.46.2Samsung Devices Bootloader privilege escalationNieznanyNot DefinedOfficial Fix0.040.00043CVE-2024-20832
2024-03-056.66.4Samsung Devices Bootloader memory corruptionNieznanyNot DefinedOfficial Fix0.020.00043CVE-2024-20831
2024-03-055.95.7Samsung Internet Deeplink privilege escalationNieznanyNot DefinedOfficial Fix0.070.00043CVE-2024-20829
2024-03-055.04.9Samsung Voice Recorder Lock Screen privilege escalationAndroid App SoftwareNot DefinedOfficial Fix0.030.00043CVE-2024-20840
2024-03-053.53.4Samsung Voice Recorder Lock Screen privilege escalationAndroid App SoftwareNot DefinedOfficial Fix0.050.00043CVE-2024-20839
2024-03-055.35.2Samsung Internet TWA WebApp privilege escalationNieznanyNot DefinedOfficial Fix0.070.00043CVE-2024-20837
2024-02-075.25.2Samsung Magician PC Software information disclosureNieznanyNot DefinedNot Defined0.030.00052CVE-2024-23769
2024-02-063.53.4Samsung Gallery Lockscreen privilege escalationPhoto Gallery SoftwareNot DefinedOfficial Fix0.000.00052CVE-2024-20827
2024-02-064.84.7Samsung UPHelper information disclosureNieznanyNot DefinedOfficial Fix0.020.00042CVE-2024-20826
2024-02-064.44.3Samsung Galaxy Store IAP information disclosureSmartphone Operating SystemNot DefinedOfficial Fix0.020.00052CVE-2024-20825
2024-02-064.44.3Samsung Galaxy Store VoiceSearch information disclosureSmartphone Operating SystemNot DefinedOfficial Fix0.020.00052CVE-2024-20824
2024-02-064.44.3Samsung Galaxy Store SamsungAccount information disclosureSmartphone Operating SystemNot DefinedOfficial Fix0.040.00052CVE-2024-20823
2024-02-064.44.3Samsung Galaxy Store AccountActivity information disclosureSmartphone Operating SystemNot DefinedOfficial Fix0.020.00052CVE-2024-20822
2024-02-063.03.0Samsung Internet SecretMode privilege escalationNieznanyNot DefinedOfficial Fix0.020.00052CVE-2024-20828
2024-02-064.64.6Samsung Smart Phone Bootloader information disclosureSmartphone Operating SystemNot DefinedOfficial Fix0.020.00043CVE-2024-20820
2024-02-066.66.5Samsung Smart Phone libsthmbc.so svc1td_vld_plh_ap memory corruptionSmartphone Operating SystemNot DefinedOfficial Fix0.030.00042CVE-2024-20819
2024-02-066.66.5Samsung Smart Phone libsthmbc.so svc1td_vld_elh memory corruptionSmartphone Operating SystemNot DefinedOfficial Fix0.020.00042CVE-2024-20818
2024-02-066.66.5Samsung Smart Phone libsthmbc.so svc1td_vld_slh memory corruptionSmartphone Operating SystemNot DefinedOfficial Fix0.040.00042CVE-2024-20817
2024-02-068.07.9Samsung Smart Phone libpadm.so padmd_vld_qtbl memory corruptionSmartphone Operating SystemNot DefinedOfficial Fix0.080.00042CVE-2024-20813
2024-02-068.07.9Samsung Smart Phone libpadm.so padmd_vld_htbl memory corruptionSmartphone Operating SystemNot DefinedOfficial Fix0.040.00042CVE-2024-20812
2024-02-064.34.2Samsung Smart Phone GameOptimizer weak authenticationSmartphone Operating SystemNot DefinedOfficial Fix0.020.00042CVE-2024-20811
2024-02-064.34.2Samsung Smart Phone libpadm.so padmd_vld_ac_prog_refine information disclosureSmartphone Operating SystemNot DefinedOfficial Fix0.020.00043CVE-2024-20814
2024-02-063.03.0Samsung Smart Phone Smart Suggestions information disclosureSmartphone Operating SystemNot DefinedOfficial Fix0.020.00044CVE-2024-20810
2024-02-066.56.4Samsung Smart Phone Auto Hotspot onCharacteristicWriteRequest weak authenticationSmartphone Operating SystemNot DefinedOfficial Fix0.020.00045CVE-2024-20816
2024-02-066.56.4Samsung Smart Phone Auto Hotspot onCharacteristicReadRequest weak authenticationSmartphone Operating SystemNot DefinedOfficial Fix0.020.00045CVE-2024-20815
2024-01-044.34.2Samsung Mobile Nearby Device Scanning privilege escalationNieznanyNot DefinedOfficial Fix0.020.00042CVE-2024-20809
2024-01-044.34.2Samsung Mobile Nearby Device Scanning privilege escalationNieznanyNot DefinedOfficial Fix0.050.00042CVE-2024-20808
2024-01-045.05.0Samsung Mobile Devices Notification Service privilege escalationSmartphone Operating SystemNot DefinedOfficial Fix0.000.00042CVE-2024-20806
2024-01-043.33.2Samsung Mobile Email Intent information disclosureNieznanyNot DefinedOfficial Fix0.020.00044CVE-2024-20807
2024-01-044.24.1Samsung Mobile Devices DeX privilege escalationSmartphone Operating SystemNot DefinedOfficial Fix0.020.00043CVE-2024-20802
2024-01-046.36.2Samsung Mobile Devices Bluetooth Pairing weak authenticationSmartphone Operating SystemNot DefinedOfficial Fix0.020.00070CVE-2024-20803
2024-01-044.44.3Samsung Mobile MyFiles ZipCompressor directory traversalNieznanyNot DefinedOfficial Fix0.050.00044CVE-2024-20805
2024-01-044.34.2Samsung Mobile MyFiles FileUriConverter directory traversalSmartphone Operating SystemNot DefinedOfficial Fix0.020.00044CVE-2024-20804
2023-12-133.53.5Samsung Exynos race conditionNieznanyNot DefinedNot Defined0.000.00043CVE-2023-45864
2023-12-133.73.7Samsung Exynos Bootloader information disclosureNieznanyNot DefinedNot Defined0.030.00052CVE-2023-43122
2023-12-135.85.8Samsung Exynos race conditionNieznanyNot DefinedNot Defined0.020.00043CVE-2023-42483
2023-12-065.75.7Samsung Escargot memory corruptionNieznanyNot DefinedOfficial Fix0.020.00070CVE-2023-41268
2023-12-055.35.3Samsung Samsung Pass weak authenticationNieznanyNot DefinedOfficial Fix0.020.00053CVE-2023-42576
2023-12-056.16.0Samsung Samsung Pass Flag Setting weak authenticationNieznanyNot DefinedOfficial Fix0.040.00053CVE-2023-42575
2023-12-056.16.0Samsung GameHomeCN privilege escalationNieznanyNot DefinedOfficial Fix0.020.00042CVE-2023-42574
2023-12-054.24.2Samsung Search Widget Pendingetent privilege escalationNieznanyNot DefinedOfficial Fix0.000.00052CVE-2023-42573
2023-12-055.25.1Samsung Smart Phone SmartManagerCN privilege escalationSmartphone Operating SystemNot DefinedOfficial Fix0.020.00042CVE-2023-42568

1349 więcej wpisów nie jest pokazywanych

Do you know our Splunk app?

Download it now for free!