» 2020 » 9월

CVE-2020-25060

Posted on 2020년 9월 1일2020년 9월 1일 by admin

CVE-2020-25060

An issue was discovered on LG mobile devices with Android OS 7.2, 8.0, 8.1, 9, and 10 software. Local users can gain privileges because of LAF and SBL1 flaws. The LG ID is LVE-SMP-200015 (July 2020).

Source: CVE-2020-25060

CVE-2020-25059

Posted on 2020년 9월 1일2020년 9월 1일 by admin

CVE-2020-25059

An issue was discovered on LG mobile devices with Android OS 7.2, 8.0, 8.1, 9, and 10 software. A service crash may occur because of incorrect input validation. The LG ID is LVE-SMP-200013 (July 2020).

Source: CVE-2020-25059

CVE-2020-25051

Posted on 2020년 9월 1일2020년 9월 1일 by admin

CVE-2020-25051

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. Attackers can bypass Factory Reset Protection (FRP) via AppInfo. The Samsung ID is SVE-2020-17758 (August 2020).

Source: CVE-2020-25051

CVE-2020-25052

Posted on 2020년 9월 1일2020년 9월 1일 by admin

CVE-2020-25052

An issue was discovered on Samsung mobile devices with Q(10.0) (exynos9830 chipsets) software. H-Arx allows attackers to execute arbitrary code or cause a denial of service (memory corruption) because indexes are mishandled. The Samsung ID is SVE-2020-17426 (August 2020).

Source: CVE-2020-25052

CVE-2020-25048

Posted on 2020년 9월 1일2020년 9월 1일 by admin

CVE-2020-25048

An issue was discovered on Samsung mobile devices with Q(10.0) (with ONEUI 2.1) software. In the Lockscreen state, the Quick Share feature allows unauthenticated downloads, aka file injection. The Samsung ID is SVE-2020-17760 (August 2020).

Source: CVE-2020-25048

CVE-2020-25053

Posted on 2020년 9월 1일2020년 9월 1일 by admin

CVE-2020-25053

An issue was discovered on Samsung mobile devices with Q(10.0) (exynos9830 chipsets) software. RKP allows arbitrary code execution. The Samsung ID is SVE-2020-17435 (August 2020).

Source: CVE-2020-25053

CVE-2020-25054

Posted on 2020년 9월 1일2020년 9월 1일 by admin

CVE-2020-25054

An issue was discovered on Samsung mobile devices with software through 2020-04-02 (Exynos modem chipsets). There is a heap-based buffer over-read in the Shannon baseband. The Samsung ID is SVE-2020-17239 (August 2020).

Source: CVE-2020-25054

CVE-2020-25055

Posted on 2020년 9월 1일2020년 9월 1일 by admin

CVE-2020-25055

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. The persona service allows attackers (who control an unprivileged SecureFolder process) to bypass admin restrictions in KnoxContainer. The Samsung ID is SVE-2020-18133 (August 2020).

Source: CVE-2020-25055

CVE-2020-25057

Posted on 2020년 9월 1일2020년 9월 1일 by admin

CVE-2020-25057

An issue was discovered on LG mobile devices with Android OS 10 software. MDMService does not properly restrict APK installations. The LG ID is LVE-SMP-200011 (July 2020).

Source: CVE-2020-25057

CVE-2020-25049

Posted on 2020년 9월 1일2020년 9월 1일 by admin

CVE-2020-25049

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. StatusBarService has insufficient DEX access control. The Samsung ID is SVE-2020-17797 (August 2020).

Source: CVE-2020-25049