Filtered by vendor Samsung Subscriptions
Total 1110 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-40281 1 Samsung 1 Tizenrt 2024-11-21 7.5 High
An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). cyassl_connect_step2 in curl/vtls/cyassl.c has a missing X509_free after SSL_get_peer_certificate, leading to information disclosure.
CVE-2022-40280 1 Samsung 1 Tizenrt 2024-11-21 7.5 High
An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3_close after sqlite3_open_v2, leading to a denial of service.
CVE-2022-40279 1 Samsung 1 Tizenrt 2024-11-21 7.5 High
An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). l2_packet_receive_timeout in wpa_supplicant/src/l2_packet/l2_packet_pcap.c has a missing check on the return value of pcap_dispatch, leading to a denial of service (malfunction).
CVE-2022-40278 1 Samsung 1 Tizenrt 2024-11-21 7.5 High
An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3_free after sqlite3_exec, leading to a denial of service.
CVE-2022-39915 2 Google, Samsung 2 Android, Calendar 2024-11-21 3.3 Low
Improper access control vulnerability in Calendar prior to versions 11.6.08.0 in Android Q(10), 12.2.11.3000 in Android R(11), 12.3.07.2000 in Android S(12), and 12.4.02.0 in Android T(13) allows attackers to access sensitive information via implicit intent.
CVE-2022-39911 1 Samsung 1 Pass 2024-11-21 4.8 Medium
Improper check or handling of exceptional conditions vulnerability in Samsung Pass prior to version 4.0.06.1 allows attacker to access Samsung Pass.
CVE-2022-39910 1 Samsung 1 Pass 2024-11-21 3.9 Low
Improper access control vulnerability in Samsung Pass prior to version 4.0.06.7 allow physical attackers to access data of Samsung Pass on a certain state of an unlocked device using pop-up view.
CVE-2022-39909 1 Samsung 1 Gear Iconx Pc Manager 2024-11-21 7.1 High
Insufficient verification of data authenticity vulnerability in Samsung Gear IconX PC Manager prior to version 2.1.221019.51 allows local attackers to create arbitrary file using symbolic link.
CVE-2022-39902 1 Samsung 2 Exynos, Exynos Firmware 2024-11-21 6.5 Medium
Improper authorization in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to get sensitive information including IMEI via emergency call.
CVE-2022-39901 1 Samsung 2 Exynos, Exynos Firmware 2024-11-21 6.5 Medium
Improper authentication in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to disable the network traffic encryption between UE and gNodeB.
CVE-2022-39893 1 Samsung 1 Galaxy Buds Pro Manage 2024-11-21 3.3 Low
Sensitive information exposure vulnerability in FmmBaseModel in Galaxy Buds Pro Manage prior to version 4.1.22092751 allows local attackers with log access permission to get device identifier data through device log.
CVE-2022-39892 1 Samsung 1 Pass 2024-11-21 3.6 Low
Improper access control in Samsung Pass prior to version 4.0.05.1 allows attackers to unauthenticated access via keep open feature.
CVE-2022-39891 1 Samsung 1 Editor Lite 2024-11-21 4.3 Medium
Heap overflow vulnerability in parse_pce function in libsavsaudio.so in Editor Lite prior to version 4.0.41.3 allows attacker to get information.
CVE-2022-39890 1 Samsung 1 Billing 2024-11-21 6.2 Medium
Improper Authorization in Samsung Billing prior to version 5.0.56.0 allows attacker to get sensitive information.
CVE-2022-39889 1 Samsung 1 Galaxywatch4plugin 2024-11-21 4 Medium
Improper access control vulnerability in GalaxyWatch4Plugin prior to versions 2.2.11.22101351 and 2.2.12.22101351 allows attackers to access wearable device information.
CVE-2022-39881 1 Samsung 2 Exynos, Exynos Firmware 2024-11-21 5.3 Medium
Improper input validation vulnerability for processing SIB12 PDU in Exynos modems prior to SMR Sep-2022 Release allows remote attacker to read out of bounds memory.
CVE-2022-39878 1 Samsung 1 Checkout 2024-11-21 4 Medium
Improper access control vulnerability in Samsung Checkout prior to version 5.0.55.3 allows attackers to access sensitive information via implicit intent broadcast.
CVE-2022-39877 2 Google, Samsung 2 Android, Group Sharing 2024-11-21 4 Medium
Improper access control vulnerability in ProfileSharingAccount in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below allows attackers to identify the device.
CVE-2022-39876 1 Samsung 1 Reminder 2024-11-21 5.9 Medium
Insertion of Sensitive Information into Log in PushRegIdUpdateClient of SReminder prior to 8.2.01.13 allows attacker to access device IMEI.
CVE-2022-39875 1 Samsung 1 Account 2024-11-21 5.1 Medium
Improper component protection vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout.