Samsung

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-21423 1Samsung 1Android Nov 21, 2024 Feb 9, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper authorization vulnerability in ChnFileShareKit prior to SMR Jan-2023 Release 1 allows attacker to control BLE advertising without permission using unprotected action.
CVE-2023-21422 1Samsung 1Android Nov 21, 2024 Feb 9, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper authorization vulnerability in semAddPublicDnsAddr in WifiSevice prior to SMR Jan-2023 Release 1 allows attackers to set custom DNS server without permission via binding WifiService.
CVE-2023-21421 1Samsung 1Android Nov 21, 2024 Feb 9, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper Handling of Insufficient Permissions or Privileges vulnerability in KnoxCustomManagerService prior to SMR Jan-2023 Release 1 allows attacker to access device SIM PIN.
CVE-2023-21420 1Samsung 1Android Nov 21, 2024 Feb 9, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Use of Externally-Controlled Format String vulnerabilities in STST TA prior to SMR Jan-2023 Release 1 allows arbitrary code execution.
CVE-2022-44636 1Samsung 15T Ksu2eakuc Firmware T Ksu2edeuc FirmwareT Ksu2euab Firmware+12 more Apr 22, 2025 Dec 13, 2022 N/A· v4 4.6 MEDIUM· v3 N/A· v2 The Samsung TV (2021 and 2022 model) smart remote control allows attackers to enable microphone access via Bluetooth spoofing when a user is activating remote control by pressing a button. This is fixed in xxx72510, E917...Show more The Samsung TV (2021 and 2022 model) smart remote control allows attackers to enable microphone access via Bluetooth spoofing when a user is activating remote control by pressing a button. This is fixed in xxx72510, E9172511 for 2021 models, xxxA1000, 4x2A0200 for 2022 models.Show less
CVE-2022-39915 1Samsung 1Calendar Nov 21, 2024 Dec 8, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper access control vulnerability in Calendar prior to versions 11.6.08.0 in Android Q(10), 12.2.11.3000 in Android R(11), 12.3.07.2000 in Android S(12), and 12.4.02.0 in Android T(13) allows attackers to access sens...Show more Improper access control vulnerability in Calendar prior to versions 11.6.08.0 in Android Q(10), 12.2.11.3000 in Android R(11), 12.3.07.2000 in Android S(12), and 12.4.02.0 in Android T(13) allows attackers to access sensitive information via implicit intent.Show less
CVE-2022-39911 1Samsung 1Pass Nov 21, 2024 Dec 8, 2022 N/A· v4 6.8 MEDIUM· v3 N/A· v2 Improper check or handling of exceptional conditions vulnerability in Samsung Pass prior to version 4.0.06.1 allows attacker to access Samsung Pass.
CVE-2022-39910 1Samsung 1Pass Nov 21, 2024 Dec 8, 2022 N/A· v4 4.2 MEDIUM· v3 N/A· v2 Improper access control vulnerability in Samsung Pass prior to version 4.0.06.7 allow physical attackers to access data of Samsung Pass on a certain state of an unlocked device using pop-up view.
CVE-2022-39909 1Samsung 1Gear Iconx Pc Manager Nov 21, 2024 Dec 8, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Insufficient verification of data authenticity vulnerability in Samsung Gear IconX PC Manager prior to version 2.1.221019.51 allows local attackers to create arbitrary file using symbolic link.
CVE-2022-39902 1Samsung 1Exynos Firmware Nov 21, 2024 Dec 8, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Improper authorization in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to get sensitive information including IMEI via emergency call.
CVE-2022-39901 1Samsung 1Exynos Firmware Nov 21, 2024 Dec 8, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Improper authentication in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to disable the network traffic encryption between UE and gNodeB.
CVE-2022-39893 1Samsung 1Galaxy Buds Pro Manage Nov 21, 2024 Nov 9, 2022 N/A· v4 3.3 LOW· v3 N/A· v2 Sensitive information exposure vulnerability in FmmBaseModel in Galaxy Buds Pro Manage prior to version 4.1.22092751 allows local attackers with log access permission to get device identifier data through device log.
CVE-2022-39892 1Samsung 1Pass Nov 21, 2024 Nov 9, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Improper access control in Samsung Pass prior to version 4.0.05.1 allows attackers to unauthenticated access via keep open feature.
CVE-2022-39891 1Samsung 1Editor Lite Nov 21, 2024 Nov 9, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Heap overflow vulnerability in parse_pce function in libsavsaudio.so in Editor Lite prior to version 4.0.41.3 allows attacker to get information.
CVE-2022-39890 1Samsung 1Billing Nov 21, 2024 Nov 9, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Improper Authorization in Samsung Billing prior to version 5.0.56.0 allows attacker to get sensitive information.
CVE-2022-39889 1Samsung 1Galaxywatch4plugin Nov 21, 2024 Nov 9, 2022 N/A· v4 3.3 LOW· v3 N/A· v2 Improper access control vulnerability in GalaxyWatch4Plugin prior to versions 2.2.11.22101351 and 2.2.12.22101351 allows attackers to access wearable device information.
CVE-2022-39881 1Samsung 1Exynos Firmware Nov 21, 2024 Nov 9, 2022 N/A· v4 9.1 CRITICAL· v3 N/A· v2 Improper input validation vulnerability for processing SIB12 PDU in Exynos modems prior to SMR Sep-2022 Release allows remote attacker to read out of bounds memory.
CVE-2022-39878 1Samsung 1Checkout Nov 21, 2024 Oct 7, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper access control vulnerability in Samsung Checkout prior to version 5.0.55.3 allows attackers to access sensitive information via implicit intent broadcast.
CVE-2022-39877 1Samsung 1Group Sharing Nov 21, 2024 Oct 7, 2022 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Improper access control vulnerability in ProfileSharingAccount in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below allows attackers to identify the device.
CVE-2022-39876 1Samsung 1Reminder Nov 21, 2024 Oct 7, 2022 N/A· v4 3.3 LOW· v3 N/A· v2 Insertion of Sensitive Information into Log in PushRegIdUpdateClient of SReminder prior to 8.2.01.13 allows attacker to access device IMEI.

Previous 1...484950...76 Next