» 2020 » 3월

CVE-2020-10845

Posted on 2020년 3월 25일2020년 3월 25일 by admin

CVE-2020-10845

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. There is a race condition leading to a use-after-free in MTP. The Samsung ID is SVE-2019-16520 (February 2020).

Source: CVE-2020-10845

CVE-2020-10848

Posted on 2020년 3월 25일2020년 3월 25일 by admin

CVE-2020-10848

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos 9810 chipsets) software. Arbitrary memory mapping exists in TEE. The Samsung ID is SVE-2019-16665 (February 2020).

Source: CVE-2020-10848

CVE-2020-10849

Posted on 2020년 3월 25일2020년 3월 25일 by admin

CVE-2020-10849

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos7885, Exynos8895, and Exynos9810 chipsets) software. The Gatekeeper trustlet allows a brute-force attack on the screen lock password. The Samsung ID is SVE-2019-14575 (January 2020).

Source: CVE-2020-10849

CVE-2020-10850

Posted on 2020년 3월 25일2020년 3월 25일 by admin

CVE-2020-10850

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos chipsets) software. The secure bootloade has a buffer overflow of the USB buffer, leading to arbitrary code execution. The Samsung ID is SVE-2019-15872 (January 2020).

Source: CVE-2020-10850

CVE-2020-10851

Posted on 2020년 3월 25일2020년 3월 25일 by admin

CVE-2020-10851

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. There is a stack overflow in the kperfmon driver. The Samsung ID is SVE-2019-15876 (January 2020).

Source: CVE-2020-10851

CVE-2020-10847

Posted on 2020년 3월 25일2020년 3월 25일 by admin

CVE-2020-10847

An issue was discovered on Samsung mobile devices with P(9.0) (Galaxy S8 and Note8) software. Facial recognition can be spoofed. The Samsung ID is SVE-2019-16614 (February 2020).

Source: CVE-2020-10847

CVE-2020-10840

Posted on 2020년 3월 25일2020년 3월 25일 by admin

CVE-2020-10840

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) (Exynos 9610 chipsets) software. There is a kernel pointer leak in the vipx driver. The Samsung ID is SVE-2019-16293 (February 2020).

Source: CVE-2020-10840

CVE-2020-10837

Posted on 2020년 3월 25일2020년 3월 25일 by admin

CVE-2020-10837

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) (with TEEGRIS) software. The Esecomm Trustlet allows a stack overflow and arbitrary code execution. The Samsung ID is SVE-2019-15984 (February 2020).

Source: CVE-2020-10837

CVE-2020-10842

Posted on 2020년 3월 25일2020년 3월 25일 by admin

CVE-2020-10842

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (S.LSI chipsets) software. There is a heap out-of-bounds write in the tsmux driver. The Samsung ID is SVE-2019-16295 (February 2020).

Source: CVE-2020-10842

CVE-2020-10839

Posted on 2020년 3월 25일2020년 3월 25일 by admin

CVE-2020-10839

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. Attackers can bypass Factory Reset Protection (FRP) via a SIM card. The Samsung ID is SVE-2019-16193 (February 2020).

Source: CVE-2020-10839