Total
8334 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-36849 | 1 Google | 1 Android | 2022-09-10 | N/A | 7.8 HIGH |
| Use after free vulnerability in sdp_mm_set_process_sensitive function of sdpmm driver prior to SMR Sep-2022 Release 1 allows attackers to perform malicious actions. | |||||
| CVE-2022-36846 | 1 Google | 1 Android | 2022-09-10 | N/A | 7.8 HIGH |
| A heap-based overflow vulnerability in ConstructDictionary function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault. | |||||
| CVE-2022-36847 | 1 Google | 1 Android | 2022-09-10 | N/A | 7.8 HIGH |
| Use after free vulnerability in mtp_send_signal function of MTP driver prior to SMR Sep-2022 Release 1 allows attackers to perform malicious actions. | |||||
| CVE-2022-36853 | 1 Google | 1 Android | 2022-09-10 | N/A | 7.5 HIGH |
| Intent redirection in Photo Editor prior to SMR Sep-2022 Release 1 allows attacker to get sensitive information. | |||||
| CVE-2022-36854 | 1 Google | 1 Android | 2022-09-10 | N/A | 5.5 MEDIUM |
| Out of bound read in libapexjni.media.samsung.so prior to SMR Sep-2022 Release 1 allows attacker access unauthorized information. | |||||
| CVE-2022-36855 | 1 Google | 1 Android | 2022-09-10 | N/A | 7.8 HIGH |
| A use after free vulnerability in iva_ctl driver prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault. | |||||
| CVE-2022-36858 | 1 Google | 1 Android | 2022-09-10 | N/A | 7.8 HIGH |
| A heap-based overflow vulnerability in GetCorrectDbLanguageTypeEsPKc() function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault. | |||||
| CVE-2022-36860 | 1 Google | 1 Android | 2022-09-10 | N/A | 7.8 HIGH |
| A heap-based overflow vulnerability in LoadEnvironment function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault. | |||||
| CVE-2022-36861 | 1 Google | 1 Android | 2022-09-10 | N/A | 5.3 MEDIUM |
| Custom permission misuse vulnerability in SystemUI prior to SMR Sep-2022 Release 1 allows attacker to use some protected functions with SystemUI privilege. | |||||
| CVE-2022-36863 | 1 Google | 1 Android | 2022-09-10 | N/A | 7.8 HIGH |
| A heap-based overflow vulnerability in GetCorrectDbLanguageTypeEsPKc function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault. | |||||
| CVE-2022-36862 | 1 Google | 1 Android | 2022-09-10 | N/A | 7.8 HIGH |
| A heap-based overflow vulnerability in HWR::EngineCJK::Impl::Construct() in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault. | |||||
| CVE-2022-20066 | 2 Google, Mediatek | 21 Android, Mt6580, Mt6739 and 18 more | 2022-09-09 | 2.1 LOW | 4.4 MEDIUM |
| In atf (hwfde), there is a possible leak of sensitive information due to incorrect error handling. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06171729; Issue ID: ALPS06171729. | |||||
| CVE-2022-27837 | 2 Google, Samsung | 2 Android, Accessibility | 2022-09-09 | 9.3 HIGH | 7.8 HIGH |
| A vulnerability using PendingIntent in Accessibility prior to version 12.5.3.2 in Android R(11.0) and 13.0.1.1 in Android S(12.0) allows attacker to access the file with system privilege. | |||||
| CVE-2022-26448 | 2 Google, Mediatek | 10 Android, Mt6853t, Mt6873 and 7 more | 2022-09-09 | N/A | 6.7 MEDIUM |
| In apusys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07063849; Issue ID: ALPS07063849. | |||||
| CVE-2022-26449 | 2 Google, Mediatek | 4 Android, Mt6879, Mt6895 and 1 more | 2022-09-09 | N/A | 6.7 MEDIUM |
| In apusys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07177810; Issue ID: ALPS07177810. | |||||
| CVE-2022-26453 | 2 Google, Mediatek | 17 Android, Mt6761, Mt6765 and 14 more | 2022-09-09 | N/A | 6.7 MEDIUM |
| In teei, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06664675; Issue ID: ALPS06664675. | |||||
| CVE-2022-26455 | 2 Google, Mediatek | 6 Android, Mt6789, Mt6855 and 3 more | 2022-09-09 | N/A | 6.7 MEDIUM |
| In gz, there is a possible memory corruption due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07177858; Issue ID: ALPS07177858. | |||||
| CVE-2022-26456 | 2 Google, Mediatek | 21 Android, Mt6769, Mt6781 and 18 more | 2022-09-09 | N/A | 4.4 MEDIUM |
| In vow, there is a possible information disclosure due to a symbolic link following. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06545473; Issue ID: ALPS06545473. | |||||
| CVE-2022-26454 | 2 Google, Mediatek | 17 Android, Mt6761, Mt6765 and 14 more | 2022-09-09 | N/A | 6.7 MEDIUM |
| In teei, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06664701; Issue ID: ALPS06664701. | |||||
| CVE-2022-26457 | 2 Google, Mediatek | 12 Android, Mt6769, Mt6781 and 9 more | 2022-09-09 | N/A | 6.7 MEDIUM |
| In vow, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138490; Issue ID: ALPS07138490. | |||||