Internet

internet

Vendor: Samsung • 28 CVEs

CVEs (28)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-58485 1Samsung 1Internet Dec 3, 2025 Dec 2, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper input validation in Samsung Internet prior to version 29.0.0.48 allows local attackers to inject arbitrary script.
CVE-2025-20995 1Samsung 1Internet Dec 4, 2025 Jun 4, 2025 N/A· v4 7.1 HIGH· v3 N/A· v2 Improper handling of insufficient permission in ClientProvider in Samsung Internet installed on non-Samsung Device prior to version 28.0.0.59 allows local attackers to read and write arbitrary files.
CVE-2025-20994 1Samsung 1Internet Dec 4, 2025 Jun 4, 2025 N/A· v4 7.1 HIGH· v3 N/A· v2 Improper handling of insufficient permission in SyncClientProvider in Samsung Internet installed on non-Samsung Device prior to version 28.0.0.59 allows local attackers to access read and write arbitrary files.
CVE-2025-32407 1Samsung 1Internet Jun 12, 2025 May 16, 2025 N/A· v4 5.9 MEDIUM· v3 N/A· v2 Samsung Internet for Galaxy Watch version 5.0.9, available up until Samsung Galaxy Watch 3, does not properly validate TLS certificates, allowing for an attacker to impersonate any and all websites visited by the user. T...Show more Samsung Internet for Galaxy Watch version 5.0.9, available up until Samsung Galaxy Watch 3, does not properly validate TLS certificates, allowing for an attacker to impersonate any and all websites visited by the user. This is a critical misconfiguration in the way the browser validates the identity of the server. It negates the use of HTTPS as a secure channel, allowing for Man-in-the-Middle attacks, stealing sensitive information or modifying incoming and outgoing traffic. NOTE: This vulnerability is in an end-of-life product that is no longer maintained by the vendor.Show less
CVE-2024-34671 1Samsung 1Internet Dec 6, 2025 Oct 8, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Use of implicit intent for sensitive communication in translation혻in Samsung Internet prior to version 26.0.3.1 allows local attackers to get sensitive information. User interaction is required for triggering this vulner...Show more Use of implicit intent for sensitive communication in translation혻in Samsung Internet prior to version 26.0.3.1 allows local attackers to get sensitive information. User interaction is required for triggering this vulnerability.Show less
CVE-2024-20869 1Samsung 1Internet Jul 17, 2025 May 7, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper privilege management vulnerability in Samsung Internet prior to version 25.0.0.41 allows local attackers to bypass protection for cookies.
CVE-2024-20838 1Samsung 1Internet Dec 23, 2024 Mar 5, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper validation vulnerability in Samsung Internet prior to version 24.0.3.2 allows local attackers to execute arbitrary code.
CVE-2024-20837 1Samsung 1Internet Dec 23, 2024 Mar 5, 2024 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Improper handling of granting permission for Trusted Web Activities in Samsung Internet prior to version 24.0.0.41 allows local attackers to grant permission to their own TWA WebApps without user interaction.
CVE-2024-20829 1Samsung 1Internet Feb 14, 2025 Mar 5, 2024 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Missing proper interaction for opening deeplink in Samsung Internet prior to version v24.0.0.0 allows remote attackers to open an application without proper interaction.
CVE-2024-20828 1Samsung 1Internet Nov 21, 2024 Feb 6, 2024 N/A· v4 4.6 MEDIUM· v3 N/A· v2 Improper authorization verification vulnerability in Samsung Internet prior to version 24.0 allows physical attackers to access files downloaded in SecretMode without proper authentication.
CVE-2023-30704 1Samsung 1Internet Nov 21, 2024 Aug 10, 2023 N/A· v4 4.6 MEDIUM· v3 N/A· v2 Improper Authorization vulnerability in Samsung Internet prior to version 22.0.0.35 allows physical attacker access downloaded files in Secret Mode without user authentication.
CVE-2023-30674 1Samsung 1Internet Nov 21, 2024 Jul 6, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Improper configuration in Samsung Internet prior to version 21.0.0.41 allows attacker to bypass SameSite Cookie.
CVE-2022-39873 1Samsung 1Internet Nov 21, 2024 Oct 7, 2022 N/A· v4 4.6 MEDIUM· v3 N/A· v2 Improper authorization vulnerability in Samsung Internet prior to version 18.0.4.14 allows physical attackers to add bookmarks in secret mode without user authentication.
CVE-2022-30740 1Samsung 1Internet Nov 21, 2024 Jun 7, 2022 N/A· v4 4.3 MEDIUM· v3 2.1 LOW· v2 Improper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69 allows physical attackers to guess stored credit card numbers.
CVE-2022-30738 1Samsung 1Internet Nov 21, 2024 Jun 7, 2022 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address bar via executing script.
CVE-2022-27839 1Samsung 1Internet Nov 21, 2024 Apr 11, 2022 N/A· v4 4.0 MEDIUM· v3 4.3 MEDIUM· v2 Improper authentication vulnerability in SecretMode in Samsung Internet prior to version 16.2.1 allows attackers to access bookmark tab without proper credentials.
CVE-2022-22290 1Samsung 1Internet Nov 21, 2024 Jan 14, 2022 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Incorrect download source UI in Downloads in Samsung Internet prior to 16.0.6.23 allows attackers to perform domain spoofing via a crafted HTML page.
CVE-2022-22284 1Samsung 1Internet Nov 21, 2024 Jan 10, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to bypass secret mode password authentication
CVE-2021-25521 1Samsung 1Internet Nov 21, 2024 Dec 8, 2021 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 Insecure caller check in sharevia deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to get current tab URL in Samsung Internet.
CVE-2021-25520 1Samsung 1Internet Nov 21, 2024 Dec 8, 2021 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Insecure caller check and input validation vulnerabilities in SearchKeyword deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to execute script codes in Samsung Internet.

12 Next