Total
2818 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-39946 | 1 Fortinet | 1 Fortinac | 2024-08-03 | 7.2 High |
An access control vulnerability [CWE-284] in FortiNAC version 9.4.2 and below, version 9.2.7 and below, 9.1 all versions, 8.8 all versions, 8.7 all versions, 8.6 all versions, 8.5 all versions may allow a remote attackerĀ authenticated on the administrative interface to perform unauthorized jsp calls via crafted HTTP requests. | ||||
CVE-2022-39866 | 1 Samsung | 1 Smartthings | 2024-08-03 | 4 Medium |
Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast. | ||||
CVE-2022-39878 | 1 Samsung | 1 Checkout | 2024-08-03 | 4 Medium |
Improper access control vulnerability in Samsung Checkout prior to version 5.0.55.3 allows attackers to access sensitive information via implicit intent broadcast. | ||||
CVE-2022-39887 | 1 Google | 1 Android | 2024-08-03 | 4.3 Medium |
Improper access control vulnerability in clearAllGlobalProxy in MiscPolicy prior to SMR Nov-2022 Release 1 allows local attacker to configure EDM setting. | ||||
CVE-2022-39894 | 1 Google | 1 Android | 2024-08-03 | 4 Medium |
Improper access control vulnerability in ContactListStartActivityHelper in Phone prior to SMR Dec-2022 Release 1 allows to access sensitive information via implicit intent. | ||||
CVE-2022-39889 | 1 Samsung | 1 Galaxywatch4plugin | 2024-08-03 | 4 Medium |
Improper access control vulnerability in GalaxyWatch4Plugin prior to versions 2.2.11.22101351 and 2.2.12.22101351 allows attackers to access wearable device information. | ||||
CVE-2022-39851 | 1 Google | 1 Android | 2024-08-03 | 4 Medium |
Improper access control vulnerability in CocktailBarService prior to SMR Oct-2022 Release 1 allows local attacker to bind service that require BIND_REMOTEVIEWS permission. | ||||
CVE-2022-39898 | 1 Google | 1 Android | 2024-08-03 | 4 Medium |
Improper access control vulnerability in IIccPhoneBook prior to SMR Dec-2022 Release 1 allows attackers to access some information of usim. | ||||
CVE-2022-39865 | 1 Samsung | 1 Smartthings | 2024-08-03 | 4 Medium |
Improper access control vulnerability in ContentsSharingActivity.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast. | ||||
CVE-2022-39870 | 1 Samsung | 1 Smartthings | 2024-08-03 | 4 Medium |
Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via PUSH_MESSAGE_RECEIVED broadcast. | ||||
CVE-2022-39884 | 1 Google | 1 Android | 2024-08-03 | 4.3 Medium |
Improper access control vulnerability in IImsService prior to SMR Nov-2022 Release 1 allows local attacker to access to Call information. | ||||
CVE-2022-39860 | 1 Samsung | 1 Quick Share | 2024-08-03 | 4.4 Medium |
Improper access control vulnerability in QuickShare prior to version 13.2.3.5 allows attackers to access sensitive information via implicit broadcast. | ||||
CVE-2022-39855 | 1 Google | 1 Android | 2024-08-03 | 5.1 Medium |
Improper access control vulnerability in FACM application prior to SMR Oct-2022 Release 1 allows a local attacker to connect arbitrary AP and Bluetooth devices. | ||||
CVE-2022-39864 | 1 Samsung | 1 Smartthings | 2024-08-03 | 3.3 Low |
Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows attackers to access sensitive information via implicit intent. | ||||
CVE-2022-39849 | 1 Google | 1 Android | 2024-08-03 | 3.3 Low |
Improper access control in knox_vpn_policy service prior to SMR Oct-2022 Release 1 allows allows unauthorized read of configuration data. | ||||
CVE-2022-39869 | 1 Samsung | 1 Smartthings | 2024-08-03 | 4 Medium |
Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via REMOVE_PERSISTENT_BANNER broadcast. | ||||
CVE-2022-39871 | 1 Samsung | 1 Smartthings | 2024-08-03 | 4 Medium |
Improper access control vulnerability cloudNotificationManager.java in SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcasts. | ||||
CVE-2022-39910 | 1 Samsung | 1 Pass | 2024-08-03 | 3.9 Low |
Improper access control vulnerability in Samsung Pass prior to version 4.0.06.7 allow physical attackers to access data of Samsung Pass on a certain state of an unlocked device using pop-up view. | ||||
CVE-2022-39857 | 1 Samsung | 1 Factorycamerafb | 2024-08-03 | 7.3 High |
Improper access control vulnerability in CameraTestActivity in FactoryCameraFB prior to version 3.5.51 allows attackers to access broadcasting Intent as system uid privilege. | ||||
CVE-2022-39895 | 1 Google | 1 Android | 2024-08-03 | 4 Medium |
Improper access control vulnerability in ContactListUtils in Phone prior to SMR Dec-2022 Release 1 allows to access contact group information via implicit intent. |