Filtered by vendor Samsung
Subscriptions
Total
1083 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-39890 | 1 Samsung | 1 Billing | 2024-08-03 | 6.2 Medium |
| Improper Authorization in Samsung Billing prior to version 5.0.56.0 allows attacker to get sensitive information. | ||||
| CVE-2022-39866 | 1 Samsung | 1 Smartthings | 2024-08-03 | 4 Medium |
| Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast. | ||||
| CVE-2022-39878 | 1 Samsung | 1 Checkout | 2024-08-03 | 4 Medium |
| Improper access control vulnerability in Samsung Checkout prior to version 5.0.55.3 allows attackers to access sensitive information via implicit intent broadcast. | ||||
| CVE-2022-39863 | 1 Samsung | 1 Account | 2024-08-03 | 3.6 Low |
| Intent redirection vulnerability in Samsung Account prior to version 13.5.01.3 allows attackers to access content providers without permission. | ||||
| CVE-2022-39889 | 1 Samsung | 1 Galaxywatch4plugin | 2024-08-03 | 4 Medium |
| Improper access control vulnerability in GalaxyWatch4Plugin prior to versions 2.2.11.22101351 and 2.2.12.22101351 allows attackers to access wearable device information. | ||||
| CVE-2022-39881 | 1 Samsung | 2 Exynos, Exynos Firmware | 2024-08-03 | 5.3 Medium |
| Improper input validation vulnerability for processing SIB12 PDU in Exynos modems prior to SMR Sep-2022 Release allows remote attacker to read out of bounds memory. | ||||
| CVE-2022-39872 | 1 Samsung | 1 Sharelive | 2024-08-03 | 5.9 Medium |
| Improper restriction of broadcasting Intent in ShareLive prior to version 13.2.03.5 leaks MAC address of the connected Bluetooth device. | ||||
| CVE-2022-39865 | 1 Samsung | 1 Smartthings | 2024-08-03 | 4 Medium |
| Improper access control vulnerability in ContentsSharingActivity.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast. | ||||
| CVE-2022-39870 | 1 Samsung | 1 Smartthings | 2024-08-03 | 4 Medium |
| Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via PUSH_MESSAGE_RECEIVED broadcast. | ||||
| CVE-2022-39861 | 1 Samsung | 1 Factorycamera | 2024-08-03 | 5.9 Medium |
| Unprotected Receiver in AtBroadcastReceiver in FactoryCamera prior to version 3.5.51 allows attackers to record video without camera privilege. | ||||
| CVE-2022-39874 | 1 Samsung | 1 Account | 2024-08-03 | 4 Medium |
| Sensitive log information leakage vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout. | ||||
| CVE-2022-39860 | 1 Samsung | 1 Quick Share | 2024-08-03 | 4.4 Medium |
| Improper access control vulnerability in QuickShare prior to version 13.2.3.5 allows attackers to access sensitive information via implicit broadcast. | ||||
| CVE-2022-39864 | 1 Samsung | 1 Smartthings | 2024-08-03 | 3.3 Low |
| Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows attackers to access sensitive information via implicit intent. | ||||
| CVE-2022-39869 | 1 Samsung | 1 Smartthings | 2024-08-03 | 4 Medium |
| Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via REMOVE_PERSISTENT_BANNER broadcast. | ||||
| CVE-2022-39871 | 1 Samsung | 1 Smartthings | 2024-08-03 | 4 Medium |
| Improper access control vulnerability cloudNotificationManager.java in SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcasts. | ||||
| CVE-2022-39911 | 1 Samsung | 1 Pass | 2024-08-03 | 4.8 Medium |
| Improper check or handling of exceptional conditions vulnerability in Samsung Pass prior to version 4.0.06.1 allows attacker to access Samsung Pass. | ||||
| CVE-2022-39910 | 1 Samsung | 1 Pass | 2024-08-03 | 3.9 Low |
| Improper access control vulnerability in Samsung Pass prior to version 4.0.06.7 allow physical attackers to access data of Samsung Pass on a certain state of an unlocked device using pop-up view. | ||||
| CVE-2022-39857 | 1 Samsung | 1 Factorycamerafb | 2024-08-03 | 7.3 High |
| Improper access control vulnerability in CameraTestActivity in FactoryCameraFB prior to version 3.5.51 allows attackers to access broadcasting Intent as system uid privilege. | ||||
| CVE-2022-39828 | 1 Samsung | 1 Mtower | 2024-08-03 | 7.5 High |
| sign_pFwInfo in Samsung mTower through 0.3.0 has a missing check on the return value of EC_KEY_set_private_key, leading to a denial of service. | ||||
| CVE-2022-39854 | 2 Google, Samsung | 2 Android, Exynos | 2024-08-03 | 6.4 Medium |
| Improper protection in IOMMU prior to SMR Oct-2022 Release 1 allows unauthorized access to secure memory. | ||||