漏洞描述
Samsung Galaxy S6是韩国三星(Samsung)公司发布的一款智能手机。 Samsung Galaxy S5的com.absolute.android.persistence.MethodSpec类中存在远程代码执行漏洞,该漏洞源于程序没有正确限制加载的类的来源。远程攻击者可借助特制的Parcelable对象利用该漏洞以系统用户权限执行任意代码。
Samsung Galaxy S5 远程代码执行漏洞
PoC代码
暂无相关漏洞推荐
- samsung-wea453e-default-pwd: Samsung Wea453e Default Password
- samsung-wea453e-rce: Samsung Wea453e RCE
- samsung-wlan-ap-wea453e-lfi: Samsung WLAN AP LFI
- samsung-wlan-ap-wea453e-rce: Samsung Wlan AP Wea453e RCE
- POC CVE-2024-7399: Samsung MagicINFO 9 Server 21.1050.0 - Remote Code Execution
- POC CVE-2025-4632: Samsung MagicINFO 9 Server - File Upload & Remote Code Execution
- POC samsung-shop-csp-bypass: Content-Security-Policy Bypass - Samsung Shop
- POC samsung-printer-default-login: Samsung Printer - Default Login
- POC samsung-wlan-default-login: Samsung Wlan AP (WEA453e) Default Login
- POC samsung-wlan-ap-lfi: Samsung WLAN AP WEA453e - Local File Inclusion
- POC samsung-wlan-ap-rce: Samsung WLAN AP WEA453e - Remote Code Execution
- POC samsung-wlan-ap-xss: Samsung WLAN AP WEA453e - Cross-Site Scripting
- Samsung SmartViewer STWAxConfig内存损坏漏洞