← Back

Samsung

samsung

1,506 CVEs • 2,866 products

Products (2,866)

Click to collapse
Toggle
Android
android
451 CVEs
Exynos 1380 Firmware
exynos_1380_firmware
125 CVEs
Exynos 1280 Firmware
exynos_1280_firmware
118 CVEs
Exynos 980 Firmware
exynos_980_firmware
114 CVEs
Exynos 1330 Firmware
exynos_1330_firmware
99 CVEs
Exynos 850 Firmware
exynos_850_firmware
97 CVEs
Exynos 1080 Firmware
exynos_1080_firmware
97 CVEs
Exynos 1480 Firmware
exynos_1480_firmware
90 CVEs
Exynos 2200 Firmware
exynos_2200_firmware
88 CVEs
Exynos W920 Firmware
exynos_w920_firmware
75 CVEs
Exynos 2400 Firmware
exynos_2400_firmware
72 CVEs
Exynos 2100 Firmware
exynos_2100_firmware
65 CVEs
Exynos W930 Firmware
exynos_w930_firmware
65 CVEs
Notes
notes
63 CVEs
Exynos Modem 5300 Firmware
exynos_modem_5300_firmware
51 CVEs
Exynos 990 Firmware
exynos_990_firmware
50 CVEs
Exynos Modem 5123 Firmware
exynos_modem_5123_firmware
49 CVEs
Exynos 9110 Firmware
exynos_9110_firmware
48 CVEs
Exynos W1000 Firmware
exynos_w1000_firmware
44 CVEs
Exynos 1580 Firmware
exynos_1580_firmware
42 CVEs
Sth Eth 250 Firmware
sth-eth-250_firmware
40 CVEs
X14j Firmware
x14j_firmware
36 CVEs
Galaxy Store
galaxy_store
31 CVEs
Exynos 9820 Firmware
exynos_9820_firmware
29 CVEs
Samsung Mobile
samsung_mobile
28 CVEs
Internet
internet
28 CVEs
Account
account
28 CVEs
Magicinfo 9 Server
magicinfo_9_server
23 CVEs
Exynos Auto T5123 Firmware
exynos_auto_t5123_firmware
21 CVEs
Exynos 9825 Firmware
exynos_9825_firmware
21 CVEs
Exynos 2500 Firmware
exynos_2500_firmware
21 CVEs
Escargot
escargot
20 CVEs
Wear Os
wear_os
19 CVEs
Smartthings
smartthings
17 CVEs
Exynos Modem 5400 Firmware
exynos_modem_5400_firmware
15 CVEs
Galaxy S6 Firmware
galaxy_s6_firmware
13 CVEs
Members
members
13 CVEs
Mtower
mtower
13 CVEs
Smart Switch
smart_switch
13 CVEs
Kies
kies
11 CVEs
Health
health
11 CVEs
Exynos 5300 Firmware
exynos_5300_firmware
11 CVEs
Exynos 5123 Firmware
exynos_5123_firmware
11 CVEs
Pass
pass
10 CVEs
Email
email
9 CVEs
Modem 5400 Firmware
modem_5400_firmware
9 CVEs
Modem 5123 Firmware
modem_5123_firmware
9 CVEs
Galaxy S4 Firmware
galaxy_s4_firmware
8 CVEs
Magician
magician
8 CVEs
Syncthru Web Service
syncthru_web_service
8 CVEs
Cloud
cloud
8 CVEs
Gallery
gallery
8 CVEs
Blockchain Keystore
blockchain_keystore
8 CVEs
One
one
8 CVEs
Series 5 Chromebook
series_5_chromebook
7 CVEs
Galaxy Watch Plugin
galaxy_watch_plugin
6 CVEs
Camera
camera
6 CVEs
Flow
flow
6 CVEs
Samsung Blockchain Keystore
samsung_blockchain_keystore
6 CVEs
Data Management Server Firmware
data_management_server_firmware
6 CVEs
Galaxy Note 3 Firmware
galaxy_note_3_firmware
5 CVEs
Samsung Email
samsung_email
5 CVEs
Gear 2 Firmware
gear_2_firmware
5 CVEs
Gear S Firmware
gear_s_firmware
5 CVEs
Gear S2 Firmware
gear_s2_firmware
5 CVEs
Gear S3 Firmware
gear_s3_firmware
5 CVEs
Tizenrt
tizenrt
5 CVEs
Group Sharing
group_sharing
5 CVEs
Samsung Pass
samsung_pass
5 CVEs
Smart Switch Pc
smart_switch_pc
5 CVEs
Find My Mobile
find_my_mobile
5 CVEs
Quick Share
quick_share
5 CVEs
Calendar
calendar
5 CVEs
Modem 5300 Firmware
modem_5300_firmware
5 CVEs
Net I Viewer
net-i_viewer
4 CVEs
Smartviewer
smartviewer
4 CVEs
Knox
knox
4 CVEs
Galaxy S6 Edge Firmware
galaxy_s6_edge_firmware
4 CVEs
Galaxy Apps
galaxy_apps
4 CVEs
X7400gx Firmware
x7400gx_firmware
4 CVEs
Galaxy S3 Firmware
galaxy_s3_firmware
4 CVEs
Galaxy J7 Neo Firmware
galaxy_j7_neo_firmware
4 CVEs
Galaxy Gear Firmware
galaxy_gear_firmware
4 CVEs
Gear Live Firmware
gear_live_firmware
4 CVEs
Gear Sport Firmware
gear_sport_firmware
4 CVEs
Gear Fit Firmware
gear_fit_firmware
4 CVEs
Gear Fit 2 Firmware
gear_fit_2_firmware
4 CVEs
Gear Fit 2 Pro Firmware
gear_fit_2_pro_firmware
4 CVEs
Exynos
exynos
4 CVEs
Samsung Flow
samsung_flow
4 CVEs
Samsung Pay
samsung_pay
4 CVEs
Exynos Firmware
exynos_firmware
4 CVEs
Myfiles
myfiles
4 CVEs
Exynos 9810 Firmware
exynos_9810_firmware
4 CVEs
Exynos 9610 Firmware
exynos_9610_firmware
4 CVEs
Sassistant
sassistant
4 CVEs
Voice Recorder
voice_recorder
4 CVEs
Rlottie
rlottie
4 CVEs
Smart Viewer
smart_viewer
3 CVEs
Ipolis Device Manager
ipolis_device_manager
3 CVEs

CVEs (1,506)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-27367
1Samsung
9Exynos 1080 Firmware
Exynos 1280 FirmwareExynos 1330 Firmware+6 more
Mar 14, 2025
Sep 9, 2024
N/A· v4
5.5 MEDIUM· v3
N/A· v2
An issue was discovered in Samsung Mobile Processor Exynos Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_sca...Show more
An issue was discovered in Samsung Mobile Processor Exynos Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_scan_ind(), there is no input validation check on a length coming from userspace, which can lead to integer overflow and a potential heap over-read.Show less
CVE-2024-27366
1Samsung
9Exynos 1080 Firmware
Exynos 1280 FirmwareExynos 1330 Firmware+6 more
Mar 25, 2025
Sep 9, 2024
N/A· v4
5.5 MEDIUM· v3
N/A· v2
An issue was discovered in Samsung Mobile Processor, Wearable Processor Exynos Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_sc...Show more
An issue was discovered in Samsung Mobile Processor, Wearable Processor Exynos Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_scan_done_ind(), there is no input validation check on a length coming from userspace, which can lead to a potential heap over-read.Show less
CVE-2024-27364
1Samsung
9Exynos 1080 Firmware
Exynos 1280 FirmwareExynos 1330 Firmware+6 more
Mar 20, 2025
Sep 9, 2024
N/A· v4
5.5 MEDIUM· v3
N/A· v2
An issue was discovered in Mobile Processor, Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_roamed_ind(), the...Show more
An issue was discovered in Mobile Processor, Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_roamed_ind(), there is no input validation check on a length coming from userspace, which can lead to a potential heap over-read.Show less
CVE-2024-34661
1Samsung
1Assistant
Sep 5, 2024
Sep 4, 2024
N/A· v4
4.3 MEDIUM· v3
N/A· v2
Improper handling of insufficient permissions in Samsung Assistant prior to version 9.1.00.7 allows remote attackers to access location data. User interaction is required for triggering this vulnerability.
CVE-2024-34660
1Samsung
1Notes
Sep 5, 2024
Sep 4, 2024
N/A· v4
7.8 HIGH· v3
N/A· v2
Heap-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows local attackers to execute arbitrary code.
CVE-2024-34659
1Samsung
1Group Sharing
Sep 5, 2024
Sep 4, 2024
N/A· v4
5.3 MEDIUM· v3
N/A· v2
Exposure of sensitive information in GroupSharing prior to version 13.6.13.3 allows remote attackers can force the victim to join the group.
CVE-2024-34658
1Samsung
1Notes
Sep 5, 2024
Sep 4, 2024
N/A· v4
7.1 HIGH· v3
N/A· v2
Out-of-bounds read in Samsung Notes allows local attackers to bypass ASLR.
CVE-2024-34657
1Samsung
1Notes
Sep 5, 2024
Sep 4, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Stack-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows remote attackers to execute arbitrary code.
CVE-2024-34656
1Samsung
1Notes
Sep 6, 2024
Sep 4, 2024
N/A· v4
7.8 HIGH· v3
N/A· v2
Path traversal in Samsung Notes prior to version 4.4.21.62 allows local attackers to execute arbitrary code.
CVE-2024-34655
1Samsung
1Android
Sep 5, 2024
Sep 4, 2024
N/A· v4
5.5 MEDIUM· v3
N/A· v2
Incorrect use of privileged API in UniversalCredentialManager prior to SMR Sep-2024 Release 1 allows local attackers to access privileged API related to UniversalCredentialManager.
CVE-2024-34654
1Samsung
1Android
Sep 5, 2024
Sep 4, 2024
N/A· v4
5.5 MEDIUM· v3
N/A· v2
Improper Export of android application component in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access files with My Files' privilege.
CVE-2024-34653
1Samsung
1Android
Sep 5, 2024
Sep 4, 2024
N/A· v4
4.6 MEDIUM· v3
N/A· v2
Path Traversal in My Files prior to SMR Sep-2024 Release 1 allows physical attackers to access directories with My Files' privilege.
CVE-2024-34652
1Samsung
1Android
Sep 5, 2024
Sep 4, 2024
N/A· v4
3.3 LOW· v3
N/A· v2
Incorrect authorization in kperfmon prior to SMR Sep-2024 Release 1 allows local attackers to access information related to performance including app usage.
CVE-2024-34651
1Samsung
1Android
Sep 5, 2024
Sep 4, 2024
N/A· v4
5.5 MEDIUM· v3
N/A· v2
Improper authorization in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access restricted data in My Files.
CVE-2024-34650
1Samsung
1Android
Sep 5, 2024
Sep 4, 2024
N/A· v4
3.3 LOW· v3
N/A· v2
Incorrect authorization in CocktailbarService prior to SMR Sep-2024 Release 1 allows local attackers to access privileged APIs related to Edge panel.
CVE-2024-34649
1Samsung
1Android
Sep 5, 2024
Sep 4, 2024
N/A· v4
2.4 LOW· v3
N/A· v2
Improper access control in new Dex Mode in multitasking framework prior to SMR Sep-2024 Release 1 allows physical attackers to temporarily access an unlocked screen.
CVE-2024-34648
1Samsung
1Android
Sep 5, 2024
Sep 4, 2024
N/A· v4
5.5 MEDIUM· v3
N/A· v2
Improper Handling of Insufficient Permissions in KnoxMiscPolicy prior to SMR Sep-2024 Release 1 allows local attackers to access sensitive data.
CVE-2024-34647
1Samsung
1Android
Sep 5, 2024
Sep 4, 2024
N/A· v4
5.5 MEDIUM· v3
N/A· v2
Incorrect use of privileged API in DualDarManagerProxy prior to SMR Sep-2024 Release 1 allows local attackers to access privileged APIs related to knox without proper license.
CVE-2024-34646
1Samsung
1Android
Sep 5, 2024
Sep 4, 2024
N/A· v4
5.5 MEDIUM· v3
N/A· v2
Improper access control in DualDarManagerProxy prior to SMR Sep-2024 Release 1 allows local attackers to cause local permanent denial of service.
CVE-2024-34645
1Samsung
1Android
Sep 5, 2024
Sep 4, 2024
N/A· v4
4.6 MEDIUM· v3
N/A· v2
Improper input validation in ThemeCenter prior to SMR Sep-2024 Release 1 allows physical attackers to install privileged applications.