threat
engine
.sh
Back
·
··:··
Home
/
Product
/
samsung notes
Product
samsung notes
88 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-21070
< 4.4.30.63
Out-of-bounds write in the SPI decoder in Samsung Notes prior to version 4.4.30.63 allows local attackers to write out-of-bounds m
4.0
MEDIUM
CVE-2025-21069
< 4.4.30.63
Out-of-bounds read in the parsing of image data in Samsung Notes prior to version 4.4.30.63 allows local attackers to access out-o
4.0
MEDIUM
CVE-2025-21068
< 4.4.30.63
Out-of-bounds read in the reading of image data in Samsung Notes prior to version 4.4.30.63 allows local attackers to access out-o
4.0
MEDIUM
CVE-2025-21067
< 4.4.30.63
Out-of-bounds read in the allocation of image buffer in Samsung Notes prior to version 4.4.30.63 allows local attackers to access
4.0
MEDIUM
CVE-2025-21066
< 4.4.30.63
Out-of-bounds read in the SPI decoder in Samsung Notes prior to version 4.4.30.63 allows local attackers to access out-of-bounds m
4.0
MEDIUM
CVE-2025-21057
< 4.4.30.63
Use of implicit intent for sensitive communication in Samsung Notes prior to version 4.4.30.63 allows local attackers to access sh
4.0
MEDIUM
CVE-2025-21037
< 4.4.30.63
Improper access control in Samsung Notes prior to version 4.4.30.63 allows physical attackers to access data across multiple user
4.1
MEDIUM
CVE-2025-21036
< 4.4.30.63
Improper access control in Samsung Notes prior to version 4.4.30.63 allows local privileged attackers to access exported note file
5.0
MEDIUM
CVE-2025-20977
< 4.4.26.71
Use of implicit intent for sensitive communication in translation in Samsung Notes prior to version 4.4.29.23 allows local attacke
3.3
LOW
CVE-2025-20976
< 4.4.29.23
Out-of-bounds read in applying binary of text content in Samsung Notes prior to version 4.4.29.23 allows attackers to read out-of-
5.5
MEDIUM
CVE-2025-20950
< 4.4.26.45
Use of implicit intent for sensitive communication in SamsungNotes prior to version 4.4.26.45 allows local attackers to access sen
4.0
MEDIUM
CVE-2025-20933
< 4.4.26.71
Out-of-bounds read in parsing bmp image in Samsung Notes prior to version 4.4.26.71 allows local attackers to read out-of-bounds m
5.5
MEDIUM
CVE-2025-20932
< 4.4.26.71
Out-of-bounds read in parsing rle of bmp image in Samsung Notes prior to version 4.4.26.71 allows local attackers to혻read out-of
5.5
MEDIUM
CVE-2025-20931
< 4.4.26.71
Out-of-bounds write in parsing bmp image in Samsung Notes prior to version 4.4.26.71 allows local attackers to execute arbitrary c
7.3
HIGH
CVE-2025-20930
< 4.4.26.71
Out-of-bounds read in parsing jpeg image in Samsung Notes prior to version 4.4.26.71 allows local attackers to read out-of-bounds
5.5
MEDIUM
CVE-2025-20929
< 4.4.26.71
Out-of-bounds write in parsing jpeg image in Samsung Notes prior to version 4.4.26.71 allows local attackers to execute arbitrary
7.3
HIGH
CVE-2025-20928
< 4.4.26.71
Out-of-bounds read in parsing wbmp image in Samsung Notes prior to vaersion 4.4.26.71 allows local attackers to access out-of-boun
5.5
MEDIUM
CVE-2025-20927
< 4.4.26.71
Out-of-bounds read in parsing image data in Samsung Notes prior to vaersion 4.4.26.71 allows local attackers to access out-of-boun
5.5
MEDIUM
CVE-2025-20925
< 4.4.26.71
Out-of-bounds read in applying binary of text data in Samsung Notes prior to version 4.4.26.71 allows local attackers to potential
5.5
MEDIUM
CVE-2025-20924
< 4.4.26.71
Improper access control in Samsung Notes prior to version 4.4.26.71 allows physical attackers to access data across multiple user
4.6
MEDIUM
CVE-2025-20922
< 4.4.26.71
Out-of-bounds read in appending text paragraph in Samsung Notes prior to version 4.4.26.71 allows attackers to read out-of-bounds
5.5
MEDIUM
CVE-2025-20921
< 4.4.26.71
Out-of-bounds read in applying binary of text content in Samsung Notes prior to version 4.4.26.71 allows attackers to read out-of-
5.5
MEDIUM
CVE-2025-20920
< 4.4.26.71
Out-of-bounds read in action link data in Samsung Notes prior to version 4.4.26.71 allows attackers to read out-of-bounds memory.
5.5
MEDIUM
CVE-2025-20919
< 4.4.26.71
Out-of-bounds read in applying binary of video content in Samsung Notes prior to version 4.4.26.71 allows attackers to read out-of
5.5
MEDIUM
CVE-2025-20918
< 4.4.26.71
Out-of-bounds read in applying extra data of base content in Samsung Notes prior to version 4.4.26.71 allows attackers to read out
5.5
MEDIUM
CVE-2025-20917
< 4.4.26.71
Out-of-bounds read in applying binary of pdf content in Samsung Notes prior to version 4.4.26.71 allows attackers to read out-of-b
5.5
MEDIUM
CVE-2025-20916
< 4.4.26.71
Out-of-bounds read in reading string of SPen in Samsung Notes prior to version 4.4.26.71 allows attackers to read out-of-bounds me
5.5
MEDIUM
CVE-2025-20915
< 4.4.26.71
Out-of-bounds read in applying binary of voice content in Samsung Notes prior to version 4.4.26.71 allows attackers to read out-of
5.5
MEDIUM
CVE-2025-20914
< 4.4.26.71
Out-of-bounds read in applying binary of hand writing content in Samsung Notes prior to version 4.4.26.71 allows attackers to read
5.5
MEDIUM
CVE-2025-20913
< 4.4.26.71
Out-of-bounds read in applying binary of drawing content in Samsung Notes prior to version 4.4.26.71 allows attackers to read out-
5.5
MEDIUM
CVE-2024-34660
< 4.4.21.62
Heap-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows local attackers to execute arbitrary code.
7.3
HIGH
CVE-2024-34658
< 4.4.21.62
Out-of-bounds read in Samsung Notes allows local attackers to bypass ASLR.
4.0
MEDIUM
CVE-2024-34657
< 4.4.21.62
Stack-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows remote attackers to execute arbitrary code.
8.6
HIGH
CVE-2024-34656
< 4.4.21.62
Path traversal in Samsung Notes prior to version 4.4.21.62 allows local attackers to execute arbitrary code.
7.3
HIGH
CVE-2024-34635
< 4.4.21.62
Out-of-bounds read in parsing textbox object in Samsung Notes prior to version 4.4.21.62 allows local attacker to access unauthori
4.0
MEDIUM
CVE-2024-34634
< 4.4.21.62
Out-of-bounds read in parsing connected object list in Samsung Notes prior to version 4.4.21.62 allows local attacker to access un
4.0
MEDIUM
CVE-2024-34633
< 4.4.21.62
Out-of-bounds read in parsing object header in Samsung Notes prior to version 4.4.21.62 allows local attacker to access unauthoriz
4.0
MEDIUM
CVE-2024-34632
<= 4.4.21.62
Out-of-bounds read in uuid parsing in Samsung Notes prior to version 4.4.21.62 allows local attacker to access unauthorized memory
4.0
MEDIUM
CVE-2024-34631
< 4.4.21.62
Out-of-bounds read in applying new binary in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read m
5.5
MEDIUM
CVE-2024-34630
< 4.4.21.62
Out-of-bounds read in applying own binary with textbox in Samsung Notes prior to version 4.4.21.62 allows local attackers to poten
5.5
MEDIUM
CVE-2024-34629
< 4.4.21.62
Out-of-bounds read in applying binary with text common object in Samsung Notes prior to version 4.4.21.62 allows local attackers t
5.5
MEDIUM
CVE-2024-34628
< 4.4.21.62
Out-of-bounds read in applying binary with path in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially
5.5
MEDIUM
CVE-2024-34627
< 4.4.21.62
Out-of-bounds read in parsing implemention in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read
5.5
MEDIUM
CVE-2024-34626
< 4.4.21.62
Out-of-bounds read in applying own binary in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read m
5.5
MEDIUM
CVE-2024-34625
< 4.4.21.62
Out-of-bounds read in applying connection point in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially
5.5
MEDIUM
CVE-2024-34624
< 4.4.21.62
Out-of-bounds read in applying paragraphs in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read m
5.5
MEDIUM
CVE-2024-34623
< 4.4.21.62
Out-of-bounds write in applying connected information in Samsung Notes prior to version 4.4.21.62 allows local attackers to potent
7.8
HIGH
CVE-2024-34622
< 4.4.21.62
Out-of-bounds write in appending paragraph in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially execu
7.8
HIGH
CVE-2024-34621
< 4.4.21.62
Out-of-bounds read in applying binary with data in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially
5.5
MEDIUM
CVE-2024-37317
>= 4.6.0 and < 4.9.3
The Nextcloud Notes app is a distraction free notes taking app for Nextcloud. If an attacker managed to share a folder called `Not
4.6
MEDIUM
CVE-2024-20868
< 4.4.15
Improper input validation in Samsung Notes prior to version 4.4.15 allows local attackers to delete files with Samsung Notes privi
4.4
MEDIUM
CVE-2023-39955
>= 4.4.0 and < 4.8.0
Notes is a note-taking app for Nextcloud, an open-source cloud platform. Starting in version 4.4.0 and prior to version 4.8.0, whe
3.5
LOW
CVE-2022-44755
all versions
HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a re
9.8
CRITICAL
CVE-2022-44753
all versions
HCL Notes is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView. This could allow a r
9.8
CRITICAL
CVE-2022-44751
all versions
HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a re
9.8
CRITICAL
CVE-2022-36831
< 4.3.14.39
Path traversal vulnerability in UriFileUtils of Samsung Notes prior to version 4.3.14.39 allows attacker to access some file as Sa
6.2
MEDIUM
CVE-2021-25498
< 4.3.02.61
A possible buffer overflow vulnerability in maetd_eco_cb_mode of libSPenBase library of Samsung Notes prior to Samsung Notes versi
7.3
HIGH
CVE-2021-25497
< 4.3.02.61
A possible buffer overflow vulnerability in maetd_cpy_slice of libSPenBase library of Samsung Notes prior to Samsung Notes version
7.3
HIGH
CVE-2021-25496
< 4.3.02.61
A possible buffer overflow vulnerability in maetd_dec_slice of libSPenBase library of Samsung Notes prior to Samsung Notes version
7.3
HIGH
CVE-2021-25495
< 4.3.02.61
A possible heap buffer overflow vulnerability in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allo
7.3
HIGH
CVE-2021-25494
< 4.3.02.61
A possible buffer overflow vulnerability in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows ar
4.0
MEDIUM
CVE-2021-25493
<= 4.3.02.61
Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB r
4.0
MEDIUM
CVE-2021-25492
<= 4.3.02.61
Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB r
7.3
HIGH
CVE-2021-25405
< 4.2.04.27
An improper access control vulnerability in ScreenOffActivity in Samsung Notes prior to version 4.2.04.27 allows untrusted applica
5.5
MEDIUM
CVE-2021-25402
< 4.2.04.27
Information Exposure vulnerability in Samsung Notes prior to version 4.2.04.27 allows attacker to access s pen latency information
3.3
LOW
CVE-2021-25367
< 4.2.00.22
Path Traversal vulnerability in Samsung Notes prior to version 4.2.00.22 allows attackers to access local files without permission
3.7
LOW
CVE-2021-25355
< 4.2.00.22
Using unsafe PendingIntent in Samsung Notes prior to version 4.2.00.22 allows local attackers unauthorized action without permissi
5.5
MEDIUM
CVE-2020-14224
all versions
A vulnerability in the MIME message handling of the HCL Notes v9 client could potentially be exploited by an unauthenticated attac
9.8
CRITICAL
CVE-2020-14232
all versions
A vulnerability in the input parameter handling of HCL Notes v9 could potentially be exploited by an authenticated attacker result
8.8
HIGH
CVE-2020-14268
>= 9.0 and < 9.0.1
A vulnerability in the MIME message handling of the Notes client (versions 9 and 10) could potentially be exploited by an unauthen
9.8
CRITICAL
CVE-2020-4102
>= 9.0.0 and <= 9.0.1
HCL Notes is susceptible to a Buffer Overflow vulnerability in DXL due to improper validation of user input. A successful exploit
6.7
MEDIUM
CVE-2020-14258
all versions
HCL Notes is susceptible to a Denial of Service vulnerability caused by improper validation of user-supplied input. A remote unaut
7.5
HIGH
CVE-2020-4097
>= 9.0 and <= 9.0.1
In HCL Notes version 9 previous to release 9.0.1 FixPack 10 Interim Fix 8, version 10 previous to release 10.0.1 FixPack 6 and ver
6.8
MEDIUM
CVE-2020-14240
>= 9.0 and <= 9.0.1
HCL Notes versions previous to releases 9.0.1 FP10 IF8, 10.0.1 FP6 and 11.0.1 FP1 is susceptible to a Stored Cross-site Scripting
6.1
MEDIUM
CVE-2020-4089
all versions
HCL Notes is vulnerable to an information leakage vulnerability through its support for the 'mailto' protocol. This vulnerability
6.5
MEDIUM
CVE-2012-6277
>= 8.5 and <= 8.5.3
Multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 10.16, as used in Symantec Mail Security for Microsoft Exchan
7.8
HIGH
CVE-2018-1771
>= 9.0.1.0 and <= 9.0.1.10
IBM Domino 9.0 and 9.0.1 could allow an attacker to execute commands on the system by triggering a buffer overflow in the parsing
8.4
HIGH
CVE-2018-10501
< 2.0.02.31
This vulnerability allows local attackers to escalate privileges on vulnerable installations of Samsung Notes Fixed in version 2.0
7.0
HIGH
CVE-2017-17689
all versions
The S/MIME specification allows a Cipher Block Chaining (CBC) malleability-gadget attack that can indirectly lead to plaintext exf
5.9
MEDIUM
CVE-2018-1437
all versions
IBM Notes 8.5 and 9.0 could allow an attacker to execute arbitrary code on the system, caused by an error related to multiple untr
7.8
HIGH
CVE-2018-1435
all versions
IBM Notes 8.5 and 9.0 is vulnerable to a DLL hijacking attack. A remote attacker could trick a user to double click a malicious ex
7.8
HIGH
CVE-2018-1411
all versions
IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) could allow a local user to execute commands on the system. By
7.8
HIGH
CVE-2018-1410
all versions
IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) could allow a local user to execute commands on the system. By
7.8
HIGH
CVE-2018-1409
all versions
IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) could allow a local user to execute commands on the system. By
7.8
HIGH
CVE-2017-1720
all versions
IBM Notes 8.5 and 9.0 could allow a local attacker to execute arbitrary commands by carefully crafting a command line sent via the
5.3
MEDIUM
CVE-2017-1714
all versions
IBM Notes and Domino NSD 8.5 and 9.0 could allow an authenticated local user without administrative privileges to gain System priv
7.8
HIGH
CVE-2017-1711
all versions
IBM iNotes 8.5 and 9.0 SUService can be misguided into running malicious code from a DLL masquerading as a windows DLL in the temp
7.8
HIGH
CVE-2016-0270
all versions
IBM Domino 9.0.1 Fix Pack 3 Interim Fix 2 through 9.0.1 Fix Pack 5 Interim Fix 1, when using TLS and AES GCM, uses random nonce ge
5.9
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin