Samsung Products Multiple Vulnerabilities
RISK: High Risk
TYPE: Operating Systems - Mobile & Apps
Multiple vulnerabilities were identified in Samsung Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure and security restriction bypass on the targeted system.
Note:
Exploit in the wild has been detected for CVE-2024-36971. The vulnerability potentially allows an attacker with System execution privileges to perform remote code execution in kernel. The risk level is rated to High Risk.
[Updated on 2024-08-12]
Updated Risk Level
Impact
- Remote Code Execution
- Denial of Service
- Elevation of Privilege
- Information Disclosure
- Security Restriction Bypass
System / Technologies affected
- Android 12, 13, 14
- Wear OS 4.0
For affected products, please refer to the link below:
https://semiconductor.samsung.com/support/quality-support/product-security-updates/
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
https://security.samsungmobile.com/securityUpdate.smsbhttps://semiconductor.samsung.com/support/quality-support/product-security-updates/
Vulnerability Identifier
- CVE-2023-20971
- CVE-2023-21351
- CVE-2024-0153
- CVE-2024-3196
- CVE-2024-4610
- CVE-2024-20076
- CVE-2024-20077
- CVE-2024-21460
- CVE-2024-21461
- CVE-2024-21462
- CVE-2024-21465
- CVE-2024-21469
- CVE-2024-23368
- CVE-2024-23372
- CVE-2024-23373
- CVE-2024-23380
- CVE-2024-26923
- CVE-2024-31334
- CVE-2024-31335
- CVE-2024-32896
- CVE-2024-34604
- CVE-2024-34605
- CVE-2024-34606
- CVE-2024-34607
- CVE-2024-34608
- CVE-2024-34609
- CVE-2024-34610
- CVE-2024-34611
- CVE-2024-34612
- CVE-2024-34613
- CVE-2024-34614
- CVE-2024-34615
- CVE-2024-34616
- CVE-2024-34617
- CVE-2024-34618
- CVE-2024-34619
- CVE-2024-34620
- CVE-2024-34724
- CVE-2024-34725
- CVE-2024-34726
- CVE-2024-34727
- CVE-2024-34731
- CVE-2024-34734
- CVE-2024-34735
- CVE-2024-34736
- CVE-2024-34737
- CVE-2024-34738
- CVE-2024-34739
- CVE-2024-34740
- CVE-2024-34741
- CVE-2024-34742
- CVE-2024-34743
- CVE-2024-34744
- CVE-2024-34745
- CVE-2024-34746
- CVE-2024-36971
Source
- https://security.samsungmobile.com/securityUpdate.smsb
- https://semiconductor.samsung.com/support/quality-support/product-security-updates/
Related Link
Related Tags
Share with