← Back

Samsung

samsung

1,506 CVEs • 2,866 products

Products (2,866)

Click to collapse
Toggle
Android
android
451 CVEs
Exynos 1380 Firmware
exynos_1380_firmware
125 CVEs
Exynos 1280 Firmware
exynos_1280_firmware
118 CVEs
Exynos 980 Firmware
exynos_980_firmware
114 CVEs
Exynos 1330 Firmware
exynos_1330_firmware
99 CVEs
Exynos 850 Firmware
exynos_850_firmware
97 CVEs
Exynos 1080 Firmware
exynos_1080_firmware
97 CVEs
Exynos 1480 Firmware
exynos_1480_firmware
90 CVEs
Exynos 2200 Firmware
exynos_2200_firmware
88 CVEs
Exynos W920 Firmware
exynos_w920_firmware
75 CVEs
Exynos 2400 Firmware
exynos_2400_firmware
72 CVEs
Exynos 2100 Firmware
exynos_2100_firmware
65 CVEs
Exynos W930 Firmware
exynos_w930_firmware
65 CVEs
Notes
notes
63 CVEs
Exynos Modem 5300 Firmware
exynos_modem_5300_firmware
51 CVEs
Exynos 990 Firmware
exynos_990_firmware
50 CVEs
Exynos Modem 5123 Firmware
exynos_modem_5123_firmware
49 CVEs
Exynos 9110 Firmware
exynos_9110_firmware
48 CVEs
Exynos W1000 Firmware
exynos_w1000_firmware
44 CVEs
Exynos 1580 Firmware
exynos_1580_firmware
42 CVEs
Sth Eth 250 Firmware
sth-eth-250_firmware
40 CVEs
X14j Firmware
x14j_firmware
36 CVEs
Galaxy Store
galaxy_store
31 CVEs
Exynos 9820 Firmware
exynos_9820_firmware
29 CVEs
Samsung Mobile
samsung_mobile
28 CVEs
Internet
internet
28 CVEs
Account
account
28 CVEs
Magicinfo 9 Server
magicinfo_9_server
23 CVEs
Exynos Auto T5123 Firmware
exynos_auto_t5123_firmware
21 CVEs
Exynos 9825 Firmware
exynos_9825_firmware
21 CVEs
Exynos 2500 Firmware
exynos_2500_firmware
21 CVEs
Escargot
escargot
20 CVEs
Wear Os
wear_os
19 CVEs
Smartthings
smartthings
17 CVEs
Exynos Modem 5400 Firmware
exynos_modem_5400_firmware
15 CVEs
Galaxy S6 Firmware
galaxy_s6_firmware
13 CVEs
Members
members
13 CVEs
Mtower
mtower
13 CVEs
Smart Switch
smart_switch
13 CVEs
Kies
kies
11 CVEs
Health
health
11 CVEs
Exynos 5300 Firmware
exynos_5300_firmware
11 CVEs
Exynos 5123 Firmware
exynos_5123_firmware
11 CVEs
Pass
pass
10 CVEs
Email
email
9 CVEs
Modem 5400 Firmware
modem_5400_firmware
9 CVEs
Modem 5123 Firmware
modem_5123_firmware
9 CVEs
Galaxy S4 Firmware
galaxy_s4_firmware
8 CVEs
Magician
magician
8 CVEs
Syncthru Web Service
syncthru_web_service
8 CVEs
Cloud
cloud
8 CVEs
Gallery
gallery
8 CVEs
Blockchain Keystore
blockchain_keystore
8 CVEs
One
one
8 CVEs
Series 5 Chromebook
series_5_chromebook
7 CVEs
Galaxy Watch Plugin
galaxy_watch_plugin
6 CVEs
Camera
camera
6 CVEs
Flow
flow
6 CVEs
Samsung Blockchain Keystore
samsung_blockchain_keystore
6 CVEs
Data Management Server Firmware
data_management_server_firmware
6 CVEs
Galaxy Note 3 Firmware
galaxy_note_3_firmware
5 CVEs
Samsung Email
samsung_email
5 CVEs
Gear 2 Firmware
gear_2_firmware
5 CVEs
Gear S Firmware
gear_s_firmware
5 CVEs
Gear S2 Firmware
gear_s2_firmware
5 CVEs
Gear S3 Firmware
gear_s3_firmware
5 CVEs
Tizenrt
tizenrt
5 CVEs
Group Sharing
group_sharing
5 CVEs
Samsung Pass
samsung_pass
5 CVEs
Smart Switch Pc
smart_switch_pc
5 CVEs
Find My Mobile
find_my_mobile
5 CVEs
Quick Share
quick_share
5 CVEs
Calendar
calendar
5 CVEs
Modem 5300 Firmware
modem_5300_firmware
5 CVEs
Net I Viewer
net-i_viewer
4 CVEs
Smartviewer
smartviewer
4 CVEs
Knox
knox
4 CVEs
Galaxy S6 Edge Firmware
galaxy_s6_edge_firmware
4 CVEs
Galaxy Apps
galaxy_apps
4 CVEs
X7400gx Firmware
x7400gx_firmware
4 CVEs
Galaxy S3 Firmware
galaxy_s3_firmware
4 CVEs
Galaxy J7 Neo Firmware
galaxy_j7_neo_firmware
4 CVEs
Galaxy Gear Firmware
galaxy_gear_firmware
4 CVEs
Gear Live Firmware
gear_live_firmware
4 CVEs
Gear Sport Firmware
gear_sport_firmware
4 CVEs
Gear Fit Firmware
gear_fit_firmware
4 CVEs
Gear Fit 2 Firmware
gear_fit_2_firmware
4 CVEs
Gear Fit 2 Pro Firmware
gear_fit_2_pro_firmware
4 CVEs
Exynos
exynos
4 CVEs
Samsung Flow
samsung_flow
4 CVEs
Samsung Pay
samsung_pay
4 CVEs
Exynos Firmware
exynos_firmware
4 CVEs
Myfiles
myfiles
4 CVEs
Exynos 9810 Firmware
exynos_9810_firmware
4 CVEs
Exynos 9610 Firmware
exynos_9610_firmware
4 CVEs
Sassistant
sassistant
4 CVEs
Voice Recorder
voice_recorder
4 CVEs
Rlottie
rlottie
4 CVEs
Smart Viewer
smart_viewer
3 CVEs
Ipolis Device Manager
ipolis_device_manager
3 CVEs

CVEs (1,506)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-40278
1Samsung
1Tizenrt
Nov 21, 2024
Sep 29, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3_free after sqlite3_exec, leading to a denial of service.
CVE-2022-40762
1Samsung
1Mtower
Nov 21, 2024
Sep 16, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A Memory Allocation with Excessive Size Value vulnerablity in the TEE_Realloc function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_Reallo...Show more
A Memory Allocation with Excessive Size Value vulnerablity in the TEE_Realloc function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_Realloc with an excessive number for the parameter len.Show less
CVE-2022-40761
1Samsung
1Mtower
Nov 21, 2024
Sep 16, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
The function tee_obj_free in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_AllocateOperation with a disturbed heap layout, related to utee_cry...Show more
The function tee_obj_free in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_AllocateOperation with a disturbed heap layout, related to utee_cryp_obj_alloc.Show less
CVE-2022-40760
1Samsung
1Mtower
Nov 21, 2024
Sep 16, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A Buffer Access with Incorrect Length Value vulnerablity in the TEE_MACUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_MACUpd...Show more
A Buffer Access with Incorrect Length Value vulnerablity in the TEE_MACUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_MACUpdate with an excessive size value of chunkSize.Show less
CVE-2022-40759
1Samsung
1Mtower
Nov 21, 2024
Sep 16, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A NULL pointer dereference issue in the TEE_MACCompareFinal function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_MACCompareFinal with a N...Show more
A NULL pointer dereference issue in the TEE_MACCompareFinal function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_MACCompareFinal with a NULL pointer for the parameter operation.Show less
CVE-2022-40758
1Samsung
1Mtower
Nov 21, 2024
Sep 16, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A Buffer Access with Incorrect Length Value vulnerablity in the TEE_CipherUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_Cip...Show more
A Buffer Access with Incorrect Length Value vulnerablity in the TEE_CipherUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_CipherUpdate with an excessive size value of srcLen.Show less
CVE-2022-40757
1Samsung
1Mtower
Nov 21, 2024
Sep 16, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A Buffer Access with Incorrect Length Value vulnerablity in the TEE_MACComputeFinal function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_...Show more
A Buffer Access with Incorrect Length Value vulnerablity in the TEE_MACComputeFinal function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_MACComputeFinal with an excessive size value of messageLen.Show less
CVE-2022-39846
1Samsung
1Smart Switch Pc
Nov 21, 2024
Sep 9, 2022
N/A· v4
7.8 HIGH· v3
N/A· v2
DLL hijacking vulnerability in Smart Switch PC prior to version 4.3.22083_3 allows attacker to execute arbitrary code.
CVE-2022-39845
1Samsung
1Kies
Nov 21, 2024
Sep 9, 2022
N/A· v4
7.1 HIGH· v3
N/A· v2
Improper validation of integrity check vulnerability in Samsung Kies prior to version 2.6.4.22074 allows local attackers to delete arbitrary directory using directory junction.
CVE-2022-39844
1Samsung
1Smart Switch Pc
Nov 21, 2024
Sep 9, 2022
N/A· v4
7.1 HIGH· v3
N/A· v2
Improper validation of integrity check vulnerability in Smart Switch PC prior to version 4.3.22083 allows local attackers to delete arbitrary directory using directory junction.
CVE-2022-36878
1Samsung
1Find My Mobile
Nov 21, 2024
Sep 9, 2022
N/A· v4
3.3 LOW· v3
N/A· v2
Exposure of Sensitive Information in Find My Mobile prior to version 7.2.25.14 allows local attacker to access IMEI via log.
CVE-2022-36877
1Samsung
1Samsung Members
Nov 21, 2024
Sep 9, 2022
N/A· v4
3.3 LOW· v3
N/A· v2
Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global and 14.0.02.4 in China allows local attackers to access device identification via log.
CVE-2022-36876
1Samsung
1Samsung Pass
Nov 21, 2024
Sep 9, 2022
N/A· v4
2.4 LOW· v3
N/A· v2
Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access account list without authentication.
CVE-2022-36875
1Samsung
1Galaxy Watch Plugin
Nov 21, 2024
Sep 9, 2022
N/A· v4
5.5 MEDIUM· v3
N/A· v2
Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151 allows attacker to access the file without permission.
CVE-2022-36874
1Samsung
1Galaxy Watch Plugin
Nov 21, 2024
Sep 9, 2022
N/A· v4
6.2 MEDIUM· v3
N/A· v2
Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751 allows attacker to access device IMEI and Serial number.
CVE-2022-36873
1Samsung
1Galaxy Watch Plugin
Nov 21, 2024
Sep 9, 2022
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Improper restriction of broadcasting Intent in GalaxyStoreBridgePageLinker of?Waterplugin prior to version 2.2.11.22081151 leaks MAC address of the connected Bluetooth device.
CVE-2022-36872
1Samsung
2Samsung Pay
Samsung Pay Kr
Nov 21, 2024
Sep 9, 2022
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Pending Intent hijacking vulnerability in SpayNotification in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.
CVE-2022-36871
1Samsung
2Samsung Pay
Samsung Pay Kr
Nov 21, 2024
Sep 9, 2022
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Pending Intent hijacking vulnerability in NotiCenterUtils in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.
CVE-2022-36870
1Samsung
2Samsung Pay
Samsung Pay Kr
Nov 21, 2024
Sep 9, 2022
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Pending Intent hijacking vulnerability in MTransferNotificationManager in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.
CVE-2022-36869
1Samsung
1Contacts Provider
Nov 21, 2024
Sep 9, 2022
N/A· v4
6.1 MEDIUM· v3
N/A· v2
Improper access control vulnerability in ContactsDumpActivity of?Contacts Provider prior to version 12.7.59 allows attacker to access the file without permission.