Samsung Products Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Operating Systems - Mobile & Apps
Multiple vulnerabilities were identified in Samsung Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, remote code execution, data manipulation and sensitive information disclosure on the targeted system.
Note:
There are indications that CVE-2023-35674 may be under limited, targeted exploitation. CVE-2023-35674 is a vulnerability in the Android Framework which allows attackers to escalate privileges without the need for user interaction or additional execution privilege.
Impact
- Elevation of Privilege
- Information Disclosure
- Remote Code Execution
- Data Manipulation
- Security Restriction Bypass
System / Technologies affected
- Android 11, 12, 13
For affected products, please refer to the link below:
https://security.samsungmobile.com/securityUpdate.smsb
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
https://security.samsungmobile.com/securityUpdate.smsb
Vulnerability Identifier
- CVE-2020-29374
- CVE-2022-34830
- CVE-2022-40510
- CVE-2023-20780
- CVE-2023-21118
- CVE-2023-21135
- CVE-2023-21264
- CVE-2023-21626
- CVE-2023-22666
- CVE-2023-28537
- CVE-2023-28555
- CVE-2023-35658
- CVE-2023-35664
- CVE-2023-35665
- CVE-2023-35666
- CVE-2023-35667
- CVE-2023-35669
- CVE-2023-35670
- CVE-2023-35671
- CVE-2023-35673
- CVE-2023-35674
- CVE-2023-35675
- CVE-2023-35676
- CVE-2023-35677
- CVE-2023-35679
- CVE-2023-35680
- CVE-2023-35681
- CVE-2023-35682
- CVE-2023-35683
- CVE-2023-35684
- CVE-2023-35687
Source
Related Link
Related Tags
Share with