Filtered by vendor Samsung
Subscriptions
Total
1083 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2021-25496 | 1 Samsung | 1 Notes | 2024-08-03 | 7.3 High |
A possible buffer overflow vulnerability in maetd_dec_slice of libSPenBase library of Samsung Notes prior to Samsung Notes version 4.3.02.61 allows arbitrary code execution. | ||||
CVE-2021-25448 | 1 Samsung | 1 Smart Touch Call | 2024-08-03 | 5.3 Medium |
Improper access control vulnerability in Smart Touch Call prior to version 1.0.0.5 allows arbitrary webpage loading in webview. | ||||
CVE-2021-25471 | 2 Google, Samsung | 2 Android, Exynos | 2024-08-03 | 3.7 Low |
A lack of replay attack protection in Security Mode Command process prior to SMR Oct-2021 Release 1 can lead to denial of service on mobile network connection and battery depletion. | ||||
CVE-2021-25464 | 1 Samsung | 1 Capture | 2024-08-03 | 3.3 Low |
An improper file management vulnerability in SamsungCapture prior to version 4.8.02 allows sensitive information leak. | ||||
CVE-2021-25445 | 1 Samsung | 1 Internet | 2024-08-03 | 5.3 Medium |
Unprotected component vulnerability in Samsung Internet prior to version 14.2 allows untrusted application to access internal files in Samsung Internet. | ||||
CVE-2021-25489 | 2 Google, Samsung | 2 Android, Exynos | 2024-08-03 | 3.3 Low |
Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic. | ||||
CVE-2021-25432 | 2 Google, Samsung | 2 Android, Samsung Members | 2024-08-03 | 3.3 Low |
Information exposure vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.0) and above allows untrusted applications to access chat data. | ||||
CVE-2021-25419 | 1 Samsung | 1 Internet | 2024-08-03 | 6.5 Medium |
Non-compliance of recommended secure coding scheme in Samsung Internet prior to version 14.0.1.62 allows attackers to display fake URL in address bar via phising URL link. | ||||
CVE-2021-25422 | 1 Samsung | 1 Watch Active Plugin | 2024-08-03 | 5.5 Medium |
Improper log management vulnerability in Watch Active PlugIn prior to version 2.2.07.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | ||||
CVE-2021-25333 | 1 Samsung | 1 Pay Mini | 2024-08-03 | 3.2 Low |
Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen via scanning specific QR code. | ||||
CVE-2021-25421 | 1 Samsung | 1 Galaxy Watch 3 Plugin | 2024-08-03 | 5.5 Medium |
Improper log management vulnerability in Galaxy Watch3 PlugIn prior to version 2.2.09.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | ||||
CVE-2021-25381 | 2 Google, Samsung | 2 Android, Account | 2024-08-03 | 5.5 Medium |
Using unsafe PendingIntent in Samsung Account in versions 10.8.0.4 in Android P(9.0) and below, and 12.1.1.3 in Android Q(10.0) and above allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent. | ||||
CVE-2021-25476 | 2 Google, Samsung | 2 Android, Exynos | 2024-08-03 | 4.1 Medium |
An information disclosure vulnerability in Widevine TA log prior to SMR Oct-2021 Release 1 allows attackers to bypass the ASLR protection mechanism in TEE. | ||||
CVE-2021-25411 | 2 Google, Samsung | 5 Android, Exynos 9610, Exynos 9810 and 2 more | 2024-08-03 | 4.4 Medium |
Improper address validation vulnerability in RKP api prior to SMR JUN-2021 Release 1 allows root privileged local attackers to write read-only kernel memory. | ||||
CVE-2021-25466 | 1 Samsung | 1 Internet | 2024-08-03 | 6.5 Medium |
Improper scheme check vulnerability in Samsung Internet prior to version 15.0.2.47 allows attackers to perform Man-in-the-middle attack and obtain Samsung Account token. | ||||
CVE-2021-25335 | 2 Google, Samsung | 2 Android, One Ui | 2024-08-03 | 2.5 Low |
Improper lockscreen status check in cocktailbar service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows unauthenticated users to access hidden notification contents over the lockscreen in specific condition. | ||||
CVE-2021-25425 | 1 Samsung | 1 Health | 2024-08-03 | 5.3 Medium |
Improper check vulnerability in Samsung Health prior to version 6.17 allows attacker to read internal cache data via exported component. | ||||
CVE-2021-25400 | 1 Samsung | 1 Internet | 2024-08-03 | 7.8 High |
Intent redirection vulnerability in Samsung Internet prior to version 14.0.1.20 allows attacker to execute privileged action. | ||||
CVE-2021-25354 | 1 Samsung | 1 Internet | 2024-08-03 | 3.3 Low |
Improper input check in Samsung Internet prior to version 13.2.1.46 allows attackers to launch non-exported activity in Samsung Browser via malicious deeplink. | ||||
CVE-2021-25438 | 2 Google, Samsung | 2 Android, Members | 2024-08-03 | 7.8 High |
Improper access control vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.0) and above allows untrusted applications to cause local file inclusion in webview. |