← Back

Samsung

samsung

1,506 CVEs • 2,866 products

Products (2,866)

Click to collapse
Toggle
Android
android
451 CVEs
Exynos 1380 Firmware
exynos_1380_firmware
125 CVEs
Exynos 1280 Firmware
exynos_1280_firmware
118 CVEs
Exynos 980 Firmware
exynos_980_firmware
114 CVEs
Exynos 1330 Firmware
exynos_1330_firmware
99 CVEs
Exynos 850 Firmware
exynos_850_firmware
97 CVEs
Exynos 1080 Firmware
exynos_1080_firmware
97 CVEs
Exynos 1480 Firmware
exynos_1480_firmware
90 CVEs
Exynos 2200 Firmware
exynos_2200_firmware
88 CVEs
Exynos W920 Firmware
exynos_w920_firmware
75 CVEs
Exynos 2400 Firmware
exynos_2400_firmware
72 CVEs
Exynos 2100 Firmware
exynos_2100_firmware
65 CVEs
Exynos W930 Firmware
exynos_w930_firmware
65 CVEs
Notes
notes
63 CVEs
Exynos Modem 5300 Firmware
exynos_modem_5300_firmware
51 CVEs
Exynos 990 Firmware
exynos_990_firmware
50 CVEs
Exynos Modem 5123 Firmware
exynos_modem_5123_firmware
49 CVEs
Exynos 9110 Firmware
exynos_9110_firmware
48 CVEs
Exynos W1000 Firmware
exynos_w1000_firmware
44 CVEs
Exynos 1580 Firmware
exynos_1580_firmware
42 CVEs
Sth Eth 250 Firmware
sth-eth-250_firmware
40 CVEs
X14j Firmware
x14j_firmware
36 CVEs
Galaxy Store
galaxy_store
31 CVEs
Exynos 9820 Firmware
exynos_9820_firmware
29 CVEs
Samsung Mobile
samsung_mobile
28 CVEs
Internet
internet
28 CVEs
Account
account
28 CVEs
Magicinfo 9 Server
magicinfo_9_server
23 CVEs
Exynos Auto T5123 Firmware
exynos_auto_t5123_firmware
21 CVEs
Exynos 9825 Firmware
exynos_9825_firmware
21 CVEs
Exynos 2500 Firmware
exynos_2500_firmware
21 CVEs
Escargot
escargot
20 CVEs
Wear Os
wear_os
19 CVEs
Smartthings
smartthings
17 CVEs
Exynos Modem 5400 Firmware
exynos_modem_5400_firmware
15 CVEs
Galaxy S6 Firmware
galaxy_s6_firmware
13 CVEs
Members
members
13 CVEs
Mtower
mtower
13 CVEs
Smart Switch
smart_switch
13 CVEs
Kies
kies
11 CVEs
Health
health
11 CVEs
Exynos 5300 Firmware
exynos_5300_firmware
11 CVEs
Exynos 5123 Firmware
exynos_5123_firmware
11 CVEs
Pass
pass
10 CVEs
Email
email
9 CVEs
Modem 5400 Firmware
modem_5400_firmware
9 CVEs
Modem 5123 Firmware
modem_5123_firmware
9 CVEs
Galaxy S4 Firmware
galaxy_s4_firmware
8 CVEs
Magician
magician
8 CVEs
Syncthru Web Service
syncthru_web_service
8 CVEs
Cloud
cloud
8 CVEs
Gallery
gallery
8 CVEs
Blockchain Keystore
blockchain_keystore
8 CVEs
One
one
8 CVEs
Series 5 Chromebook
series_5_chromebook
7 CVEs
Galaxy Watch Plugin
galaxy_watch_plugin
6 CVEs
Camera
camera
6 CVEs
Flow
flow
6 CVEs
Samsung Blockchain Keystore
samsung_blockchain_keystore
6 CVEs
Data Management Server Firmware
data_management_server_firmware
6 CVEs
Galaxy Note 3 Firmware
galaxy_note_3_firmware
5 CVEs
Samsung Email
samsung_email
5 CVEs
Gear 2 Firmware
gear_2_firmware
5 CVEs
Gear S Firmware
gear_s_firmware
5 CVEs
Gear S2 Firmware
gear_s2_firmware
5 CVEs
Gear S3 Firmware
gear_s3_firmware
5 CVEs
Tizenrt
tizenrt
5 CVEs
Group Sharing
group_sharing
5 CVEs
Samsung Pass
samsung_pass
5 CVEs
Smart Switch Pc
smart_switch_pc
5 CVEs
Find My Mobile
find_my_mobile
5 CVEs
Quick Share
quick_share
5 CVEs
Calendar
calendar
5 CVEs
Modem 5300 Firmware
modem_5300_firmware
5 CVEs
Net I Viewer
net-i_viewer
4 CVEs
Smartviewer
smartviewer
4 CVEs
Knox
knox
4 CVEs
Galaxy S6 Edge Firmware
galaxy_s6_edge_firmware
4 CVEs
Galaxy Apps
galaxy_apps
4 CVEs
X7400gx Firmware
x7400gx_firmware
4 CVEs
Galaxy S3 Firmware
galaxy_s3_firmware
4 CVEs
Galaxy J7 Neo Firmware
galaxy_j7_neo_firmware
4 CVEs
Galaxy Gear Firmware
galaxy_gear_firmware
4 CVEs
Gear Live Firmware
gear_live_firmware
4 CVEs
Gear Sport Firmware
gear_sport_firmware
4 CVEs
Gear Fit Firmware
gear_fit_firmware
4 CVEs
Gear Fit 2 Firmware
gear_fit_2_firmware
4 CVEs
Gear Fit 2 Pro Firmware
gear_fit_2_pro_firmware
4 CVEs
Exynos
exynos
4 CVEs
Samsung Flow
samsung_flow
4 CVEs
Samsung Pay
samsung_pay
4 CVEs
Exynos Firmware
exynos_firmware
4 CVEs
Myfiles
myfiles
4 CVEs
Exynos 9810 Firmware
exynos_9810_firmware
4 CVEs
Exynos 9610 Firmware
exynos_9610_firmware
4 CVEs
Sassistant
sassistant
4 CVEs
Voice Recorder
voice_recorder
4 CVEs
Rlottie
rlottie
4 CVEs
Smart Viewer
smart_viewer
3 CVEs
Ipolis Device Manager
ipolis_device_manager
3 CVEs

CVEs (1,506)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-53965
1Samsung
18Exynos 1280 Firmware
Exynos 1330 FirmwareExynos 1380 Firmware+15 more
Dec 5, 2025
Dec 3, 2025
N/A· v4
5.3 MEDIUM· v3
N/A· v2
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Th...Show more
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. The function used to decode the SOR transparent container lacks bounds checking, which can cause a fatal error.Show less
CVE-2025-58488
1Samsung
1Smart Touch Call
Jan 8, 2026
Dec 2, 2025
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Improper verification of source of a communication channel in SmartTouchCall prior to version 1.0.1.1 allows remote attackers to access sensitive information. User interaction is required for triggering this vulnerabilit...Show more
Improper verification of source of a communication channel in SmartTouchCall prior to version 1.0.1.1 allows remote attackers to access sensitive information. User interaction is required for triggering this vulnerability.Show less
CVE-2025-58487
1Samsung
1Account
Dec 3, 2025
Dec 2, 2025
N/A· v4
3.3 LOW· v3
N/A· v2
Improper authorization in Samsung Account prior to version 15.5.01.1 allows local attacker to launch arbitrary activity with Samsung Account privilege.
CVE-2025-58486
1Samsung
1Account
Dec 3, 2025
Dec 2, 2025
N/A· v4
5.5 MEDIUM· v3
N/A· v2
Improper input validation in Samsung Account prior to version 15.5.01.1 allows local attacker to execute arbitrary script.
CVE-2025-58485
1Samsung
1Internet
Dec 3, 2025
Dec 2, 2025
N/A· v4
5.5 MEDIUM· v3
N/A· v2
Improper input validation in Samsung Internet prior to version 29.0.0.48 allows local attackers to inject arbitrary script.
CVE-2025-58483
1Samsung
1Galaxy Store
Dec 4, 2025
Dec 2, 2025
N/A· v4
3.3 LOW· v3
N/A· v2
Improper export of android application components in Galaxy Store for Galaxy Watch prior to version 1.0.06.29 allows local attacker to install arbitrary application on Galaxy Store.
CVE-2025-58482
1Samsung
1Motionphoto
Dec 4, 2025
Dec 2, 2025
N/A· v4
7.3 HIGH· v3
N/A· v2
Improper access control in MPLocalService of MotionPhoto prior to version 4.1.51 allows local attackers to start privileged service.
CVE-2025-58481
1Samsung
1Motionphoto
Dec 4, 2025
Dec 2, 2025
N/A· v4
7.8 HIGH· v3
N/A· v2
Improper access control in MPRemoteService of MotionPhoto prior to version 4.1.51 allows local attackers to start privileged service.
CVE-2025-58480
1Samsung
1Android
Dec 5, 2025
Dec 2, 2025
N/A· v4
7.5 HIGH· v3
N/A· v2
Heap-based buffer overflow in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.
CVE-2025-58479
1Samsung
1Android
Dec 5, 2025
Dec 2, 2025
N/A· v4
7.5 HIGH· v3
N/A· v2
Out-of-bounds read in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.
CVE-2025-58478
1Samsung
1Android
Dec 5, 2025
Dec 2, 2025
N/A· v4
7.5 HIGH· v3
N/A· v2
Out-of-bounds write in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.
CVE-2025-58477
1Samsung
1Android
Dec 5, 2025
Dec 2, 2025
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Out-of-bounds write in parsing IFD tag in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.
CVE-2025-58476
1Samsung
1Android
Dec 5, 2025
Dec 2, 2025
N/A· v4
4.6 MEDIUM· v3
N/A· v2
Out-of-bounds read vulnerability in bootloader prior to SMR Dec-2025 Release 1 allows physical attackers to access out-of-bounds memory.
CVE-2025-58475
1Samsung
1Android
Dec 5, 2025
Dec 2, 2025
N/A· v4
4.4 MEDIUM· v3
N/A· v2
Improper input validation in libsec-ril.so prior to SMR Dec-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.
CVE-2025-21080
1Samsung
1Android
Dec 5, 2025
Dec 2, 2025
N/A· v4
7.1 HIGH· v3
N/A· v2
Improper export of android application components in Dynamic Lockscreen prior to SMR Dec-2025 Release 1 allows local attackers to access files with Dynamic Lockscreen's privilege.
CVE-2025-21072
1Samsung
1Android
Dec 5, 2025
Dec 2, 2025
N/A· v4
4.4 MEDIUM· v3
N/A· v2
Out-of-bounds write in decoding metadata in fingerprint trustlet prior to SMR Dec-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.
CVE-2025-21079
1Samsung
1Members
Nov 7, 2025
Nov 5, 2025
N/A· v4
8.1 HIGH· v3
N/A· v2
Improper input validation in Samsung Members prior to version 5.5.01.3 allows remote attackers to connect arbitrary URL and launch arbitrary activity with Samsung Members privilege. User interaction is required for trigg...Show more
Improper input validation in Samsung Members prior to version 5.5.01.3 allows remote attackers to connect arbitrary URL and launch arbitrary activity with Samsung Members privilege. User interaction is required for triggering this vulnerability.Show less
CVE-2025-21078
1Samsung
1Smart Switch
Nov 7, 2025
Nov 5, 2025
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Use of insufficiently random value of secretKey in Smart Switch prior to version 3.7.68.6 allows adjacent attackers to access backup data from applications.
CVE-2025-21077
1Samsung
1Email
Nov 7, 2025
Nov 5, 2025
N/A· v4
3.3 LOW· v3
N/A· v2
Improper input validation in Samsung Email prior to version 6.2.06.0 allows local attackers to launch arbitrary activity with Samsung Email privilege.
CVE-2025-21076
1Samsung
1Account
Nov 7, 2025
Nov 5, 2025
N/A· v4
5.5 MEDIUM· v3
N/A· v2
Improper handling of insufficient permissions or privileges in Samsung Account prior to version 15.5.00.18 allows local attackers to access data in Samsung Account. User interaction is required for triggering this vulner...Show more
Improper handling of insufficient permissions or privileges in Samsung Account prior to version 15.5.00.18 allows local attackers to access data in Samsung Account. User interaction is required for triggering this vulnerability.Show less