Account

account

Vendor: Samsung • 28 CVEs

CVEs (28)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-20994 1Samsung 1Account May 29, 2026 Mar 16, 2026 6.9 MEDIUM· v4 6.1 MEDIUM· v3 N/A· v2 URL redirection in Samsung Account prior to version 15.5.01.1 allows local attackers to potentially get access token.
CVE-2025-58487 1Samsung 1Account Dec 3, 2025 Dec 2, 2025 N/A· v4 3.3 LOW· v3 N/A· v2 Improper authorization in Samsung Account prior to version 15.5.01.1 allows local attacker to launch arbitrary activity with Samsung Account privilege.
CVE-2025-58486 1Samsung 1Account Dec 3, 2025 Dec 2, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper input validation in Samsung Account prior to version 15.5.01.1 allows local attacker to execute arbitrary script.
CVE-2025-21076 1Samsung 1Account Nov 7, 2025 Nov 5, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper handling of insufficient permissions or privileges in Samsung Account prior to version 15.5.00.18 allows local attackers to access data in Samsung Account. User interaction is required for triggering this vulner...Show more Improper handling of insufficient permissions or privileges in Samsung Account prior to version 15.5.00.18 allows local attackers to access data in Samsung Account. User interaction is required for triggering this vulnerability.Show less
CVE-2023-21481 1Samsung 1Account Oct 1, 2025 Sep 3, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Improper URL input validation vulnerability in Samsung Account application prior to version 14.1.0.0 allows remote attackers to get sensitive information.
CVE-2024-20841 1Samsung 1Account Feb 14, 2025 Mar 5, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper Handling of Insufficient Privileges in Samsung Account prior to version 14.8.00.3 allows local attackers to access data.
CVE-2023-42551 1Samsung 1Account Nov 21, 2024 Nov 7, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Use of implicit intent for sensitive communication vulnerability in startTncActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.
CVE-2023-42550 1Samsung 1Account Nov 21, 2024 Nov 7, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Use of implicit intent for sensitive communication vulnerability in startSignIn in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.
CVE-2023-42549 1Samsung 1Account Nov 21, 2024 Nov 7, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Use of implicit intent for sensitive communication vulnerability in startNameValidationActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.
CVE-2023-42548 1Samsung 1Account Nov 21, 2024 Nov 7, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Use of implicit intent for sensitive communication vulnerability in startMandatoryCheckActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.
CVE-2023-42547 1Samsung 1Account Nov 21, 2024 Nov 7, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Use of implicit intent for sensitive communication vulnerability in startEmailValidationActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.
CVE-2023-42546 1Samsung 1Account Nov 21, 2024 Nov 7, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Use of implicit intent for sensitive communication vulnerability in startAgreeToDisclaimerActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.
CVE-2023-42540 1Samsung 1Account Mar 6, 2025 Nov 7, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper access control vulnerability in Samsung Account prior to version 14.5.01.1 allows attackers to access sensitive information via implicit intent.
CVE-2022-39875 1Samsung 1Account Nov 21, 2024 Oct 7, 2022 N/A· v4 4.4 MEDIUM· v3 N/A· v2 Improper component protection vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout.
CVE-2022-39874 1Samsung 1Account Nov 21, 2024 Oct 7, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Sensitive log information leakage vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout.
CVE-2022-39863 1Samsung 1Account Nov 21, 2024 Oct 7, 2022 N/A· v4 4.7 MEDIUM· v3 N/A· v2 Intent redirection vulnerability in Samsung Account prior to version 13.5.01.3 allows attackers to access content providers without permission.
CVE-2022-30743 1Samsung 1Account Nov 21, 2024 Jun 7, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission.
CVE-2022-30739 1Samsung 1Account Nov 21, 2024 Jun 7, 2022 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get an user email or phone number with a normal level permission.
CVE-2022-30737 1Samsung 1Account Nov 21, 2024 Jun 7, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Implicit Intent hijacking vulnerability in Samsung Account prior to version 13.2.00.6 allows attackers to get email ID.
CVE-2022-30736 1Samsung 1Account Nov 21, 2024 Jun 7, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission.

12 Next