{"vulnerability": "CVE-2016-1103", "sightings": [{"uuid": "f27404b7-ef8b-4336-9f5e-ab5aa1135381", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2016-1103", "type": "exploited", "source": "https://www.exploit-db.com/exploits/39826", "content": "", "creation_timestamp": "2016-05-17T00:00:00.000000Z"}, {"uuid": "ffa60006-bf55-4242-a367-6d5486fb560b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2016-11039", "type": "seen", "source": "https://t.me/cibsecurity/11066", "content": "ATENTION\u203c New - CVE-2016-11039\n\nAn issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) (AP + CP MDM9x35, or Qualcomm Onechip) software. There is a NULL pointer dereference issue in the IPC socket code. The Samsung ID is SVE-2016-5980 (July 2016).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-07T18:48:14.000000Z"}, {"uuid": "e6a84b8b-6fe2-471a-af00-3680f0a9c5c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2016-11035", "type": "seen", "source": "https://t.me/cibsecurity/11073", "content": "ATENTION\u203c New - CVE-2016-11035\n\nAn issue was discovered on Samsung mobile devices with software through 2016-05-27 (Exynos AP chipsets). A local graphics user can cause a Kernel Crash via the fb0(DECON) frame buffer interface. The Samsung ID is SVE-2016-7011 (October 2016).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-07T19:18:21.000000Z"}, {"uuid": "f082a427-fc95-4a57-8117-f538852f34f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2016-11034", "type": "seen", "source": "https://t.me/cibsecurity/11074", "content": "ATENTION\u203c New - CVE-2016-11034\n\nAn issue was discovered on Samsung mobile devices with L(5.0/5.1) and M(6.0) software. The decode function in Qjpeg in Qt 5.7 allows attackers to trigger a system crash via a malformed image. The Samsung ID is SVE-2016-6560 (October 2016).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-07T19:18:22.000000Z"}, {"uuid": "94f2bc05-2356-473b-8817-723d8f18c1ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2016-11033", "type": "seen", "source": "https://t.me/cibsecurity/11075", "content": "ATENTION\u203c New - CVE-2016-11033\n\nAn issue was discovered on Samsung mobile devices with M(6.0) software. There is a heap-based buffer overflow in tlc_server. The Samsung IDs are SVE-2016-7220 and SVE-2016-7225 (November 2016).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-07T19:18:24.000000Z"}, {"uuid": "8e942665-f50d-4dcb-ba23-6cee87c15b06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2016-11032", "type": "seen", "source": "https://t.me/cibsecurity/11076", "content": "ATENTION\u203c New - CVE-2016-11032\n\nAn issue was discovered on Samsung mobile devices with M(6.0) software. An attacker can disable all Sound functionality by broadcasting an unprotected intent. The Samsung IDs are SVE-2016-7179 and SVE-2016-7182 (November 2016).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-07T19:18:25.000000Z"}, {"uuid": "09a0bf9e-fff5-4953-aedc-65ee1b74711a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2016-11038", "type": "seen", "source": "https://t.me/cibsecurity/11067", "content": "ATENTION\u203c New - CVE-2016-11038\n\nAn issue was discovered on Samsung mobile devices with software through 2016-04-05 (incorporating the Samsung Professional Audio SDK). The Jack audio service doesn't implement access control for shared memory, leading to arbitrary code execution or privilege escalation. The Samsung ID is SVE-2016-5953 (July 2016).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-07T18:48:15.000000Z"}, {"uuid": "0587314a-eeb6-4d94-bb39-e02bf50d02ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2016-11036", "type": "seen", "source": "https://t.me/cibsecurity/11069", "content": "ATENTION\u203c New - CVE-2016-11036\n\nAn issue was discovered on Samsung mobile devices with M(6.0) software. There is a Factory Reset Protection (FRP) bypass. The Samsung ID is SVE-2016-6008 (August 2016).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-07T18:48:17.000000Z"}, {"uuid": "fe9a9d79-0d01-4484-b18c-b8650c9ad3bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2016-11031", "type": "seen", "source": "https://t.me/cibsecurity/11077", "content": "ATENTION\u203c New - CVE-2016-11031\n\nAn issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. AntService allows a system_server crash and reboot. The Samsung ID is SVE-2016-7044 (November 2016).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-07T19:18:26.000000Z"}, {"uuid": "60c4b855-f0a6-411e-bff8-edeb65c61d21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2016-11030", "type": "seen", "source": "https://t.me/cibsecurity/11078", "content": "ATENTION\u203c New - CVE-2016-11030\n\nAn issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) (with Hrm sensor support) software. The sysfs of the MAX86902 sensor driver does not prevent concurrent access, leading to a race condition and resultant heap-based buffer overflow. The Samsung ID is SVE-2016-7341 (December 2016).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-07T19:18:27.000000Z"}]}