Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Android
(Samsung)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 348 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-07-08 | CVE-2025-21008 | Out-of-bounds read in decoding frame header in libsavsvc.so prior to Android 15 allows local attackers to cause memory corruption. | Android | N/A | ||
| 2025-07-08 | CVE-2025-21009 | Out-of-bounds read in decoding malformed frame header in libsavsvc.so prior to Android 15 allows local attackers to cause memory corruption. | Android | N/A | ||
| 2024-01-04 | CVE-2024-20805 | Path traversal vulnerability in ZipCompressor of MyFiles prior to SMR Jan-2024 Release 1 in Android 11 and Android 12, and version 14.5.00.21 in Android 13 allows local attackers to write arbitrary file. | Android, Myfiles | 5.5 | ||
| 2025-05-07 | CVE-2025-20961 | Improper handling of insufficient permission or privileges in sepunion service prior to SMR May-2025 Release 1 allows local privileged attackers to access files with system privilege. | Android | 5.5 | ||
| 2025-05-07 | CVE-2025-20962 | Improper handling of insufficient permission in SpenGesture service prior to SMR May-2025 Release 1 allows local attackers to track the S Pen position. | Android | 4.0 | ||
| 2025-05-07 | CVE-2025-20955 | Improper Export of Android Application Components in NotificationHistoryImageProvider prior to SMR May-2025 Release 1 allows local attackers to access notification images. | Android | 5.5 | ||
| 2025-05-07 | CVE-2025-20957 | Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch arbitrary activities with SmartManagerCN privilege. | Android | 7.8 | ||
| 2025-05-07 | CVE-2025-20959 | Use of implicit intent for sensitive communication in Wi-Fi P2P service prior to SMR May-2025 Release 1 allows local attackers to access sensitive information. | Android | 5.5 | ||
| 2025-05-07 | CVE-2025-20964 | Out-of-bounds write in parsing media files in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory. | Android | 7.8 | ||
| 2025-05-07 | CVE-2025-20958 | Improper verification of intent by broadcast receiver in UnifiedWFC prior to SMR May-2025 Release 1 allows local attackers to manipulate VoWiFi related behaviors. | Android | 4.4 |