Show filters
1,115 Total Results
Displaying 31-40 of 1,115
Sort by:
Attacker Value
Unknown

CVE-2024-49420

Disclosure Date: December 03, 2024 (last updated December 21, 2024)
Improper handling of responses in GamingHub prior to version 6.1.04.6 in Korea, 7.1.03.7 in Global allows remote attackers to launch arbitrary activity.
0
0
Attacker Value
Unknown

CVE-2024-49419

Disclosure Date: December 03, 2024 (last updated December 21, 2024)
Insufficient verification of url authenticity in GamingHub prior to version 6.1.03.4 in Korea, 7.1.02.4 in Global allows remote attackers to load an arbitrary URL in its webview.
0
0
Attacker Value
Unknown

CVE-2024-49418

Disclosure Date: December 03, 2024 (last updated December 21, 2024)
Insufficient verification of url authenticity in GamingHub prior to version 6.1.03.4 in Korea, 7.1.02.4 in Global allows remote attackers to enable JavaScript in its webview.
0
0
Attacker Value
Unknown

CVE-2024-49417

Disclosure Date: December 03, 2024 (last updated December 21, 2024)
Use of implicit intent for sensitive communication in Smart Touch Call prior to 1.0.0.8 allows local attackers to launch privileged activities. User interaction is required for triggering this vulnerability.
0
0
Attacker Value
Unknown

CVE-2024-49416

Disclosure Date: December 03, 2024 (last updated December 21, 2024)
Use of implicit intent for sensitive communication in SmartThings prior to version 1.8.21 allows local attackers to get sensitive information.
0
0
Attacker Value
Unknown

CVE-2024-49415

Disclosure Date: December 03, 2024 (last updated February 11, 2025)
Out-of-bound write in libsaped.so prior to SMR Dec-2024 Release 1 allows remote attackers to execute arbitrary code.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-49414

Disclosure Date: December 03, 2024 (last updated February 11, 2025)
Authentication Bypass Using an Alternate Path in Dex Mode prior to SMR Dec-2024 Release 1 allows physical attackers to temporarily access to recent app list.
Attack Vector: PhysicalPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-49413

Disclosure Date: December 03, 2024 (last updated February 11, 2025)
Improper Verification of Cryptographic Signature in SmartSwitch prior to SMR Dec-2024 Release 1 allows local attackers to install malicious applications.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-49412

Disclosure Date: December 03, 2024 (last updated December 21, 2024)
Improper input validation in Settings prior to SMR Dec-2024 Release 1 allows local attackers to broadcast signal for discovering Bluetooth on Galaxy Watch.
0
0
Attacker Value
Unknown

CVE-2024-49411

Disclosure Date: December 03, 2024 (last updated February 11, 2025)
Path Traversal in ThemeCenter prior to SMR Dec-2024 Release 1 allows physical attackers to copy apk files to arbitrary path with ThemeCenter privilege.
Attack Vector: PhysicalPrivileges: NoneUser Interaction: None
0
0
View More Topics  < Previous  Next >