Samsung Products Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Operating Systems - Mobile & Apps
Multiple vulnerabilities were identified in Samsung Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, security restriction bypass, data manipulation and sensitive information disclosure on the targeted system.
Note:
CVE-2023-21492 is being exploited in the wild. The vulnerability is related to kernel pointers printed in the log file that allows a privileged local attacker to bypass ASLR.
Impact
- Denial of Service
- Elevation of Privilege
- Information Disclosure
- Remote Code Execution
- Security Restriction Bypass
- Data Manipulation
System / Technologies affected
- Android 11, 12, 13
- Selected Android 11, 12, 13 Qualcomm devices
- Select devices using Exynos CP chipsets
For affected products, please refer to the link below:
https://security.samsungmobile.com/securityUpdate.smsb
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
https://security.samsungmobile.com/securityUpdate.smsb
Vulnerability Identifier
- CVE-2021-0872
- CVE-2021-0873
- CVE-2021-0874
- CVE-2021-0875
- CVE-2021-0876
- CVE-2021-0878
- CVE-2021-0879
- CVE-2021-0880
- CVE-2021-0881
- CVE-2021-0882
- CVE-2021-0883
- CVE-2021-0884
- CVE-2021-0885
- CVE-2021-39617
- CVE-2022-4696
- CVE-2022-20338
- CVE-2022-20444
- CVE-2022-22706
- CVE-2022-32599
- CVE-2022-33231
- CVE-2022-33269
- CVE-2022-33270
- CVE-2022-33288
- CVE-2022-33289
- CVE-2022-33302
- CVE-2022-33917
- CVE-2022-36449
- CVE-2022-38181
- CVE-2022-40503
- CVE-2022-40532
- CVE-2022-41757
- CVE-2022-42716
- CVE-2022-47335
- CVE-2022-47336
- CVE-2022-47337
- CVE-2022-47338
- CVE-2023-0266
- CVE-2023-20652
- CVE-2023-20653
- CVE-2023-20654
- CVE-2023-20655
- CVE-2023-20656
- CVE-2023-20657
- CVE-2023-20914
- CVE-2023-20930
- CVE-2023-20941
- CVE-2023-20993
- CVE-2023-21103
- CVE-2023-21104
- CVE-2023-21107
- CVE-2023-21109
- CVE-2023-21110
- CVE-2023-21111
- CVE-2023-21112
- CVE-2023-21116
- CVE-2023-21117
- CVE-2023-21118
- CVE-2023-21484
- CVE-2023-21485
- CVE-2023-21486
- CVE-2023-21487
- CVE-2023-21488
- CVE-2023-21489
- CVE-2023-21490
- CVE-2023-21491
- CVE-2023-21492
- CVE-2023-21493
- CVE-2023-21494
- CVE-2023-21495
- CVE-2023-21496
- CVE-2023-21497
- CVE-2023-21498
- CVE-2023-21499
- CVE-2023-21500
- CVE-2023-21501
- CVE-2023-21502
- CVE-2023-21503
- CVE-2023-21504
- CVE-2023-21630
沒有留言:
發佈留言