Filtered by vendor Samsung
Subscriptions
Total
1083 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-36875 | 1 Samsung | 1 Galaxy Watch Plugin | 2024-08-03 | 6.6 Medium |
Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151 allows attacker to access the file without permission. | ||||
CVE-2022-36867 | 1 Samsung | 1 Editor Lite | 2024-08-03 | 5.9 Medium |
Improper access control vulnerability in Editor Lite prior to version 4.0.40.14 allows attackers to access sensitive information. | ||||
CVE-2022-36878 | 1 Samsung | 1 Find My Mobile | 2024-08-03 | 3.3 Low |
Exposure of Sensitive Information in Find My Mobile prior to version 7.2.25.14 allows local attacker to access IMEI via log. | ||||
CVE-2022-36859 | 1 Samsung | 1 Smarttagplugin | 2024-08-03 | 5.7 Medium |
Improper input validation vulnerability in SmartTagPlugin prior to version 1.2.21-6 allows privileged attackers to trigger a XSS on a victim's devices. | ||||
CVE-2022-36870 | 1 Samsung | 2 Samsung Pay, Samsung Pay Kr | 2024-08-03 | 5 Medium |
Pending Intent hijacking vulnerability in MTransferNotificationManager in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent. | ||||
CVE-2022-36866 | 2 Google, Samsung | 2 Android, Group Sharing | 2024-08-03 | 4 Medium |
Improper access control vulnerability in Broadcaster in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below allows attackers to identify the device. | ||||
CVE-2022-36865 | 2 Google, Samsung | 2 Android, Group Sharing | 2024-08-03 | 4 Medium |
Improper access control in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below allows attackers to access device information. | ||||
CVE-2022-36851 | 1 Samsung | 1 Samsung Pass | 2024-08-03 | 3.9 Low |
Improper access control vulnerability in Samsung pass prior to version 4.0.03.1 allow physical attackers to access data of Samsung pass on a certain state of an unlocked device. | ||||
CVE-2022-36834 | 1 Samsung | 1 Game Launcher | 2024-08-03 | 3.3 Low |
Exposure of Sensitive Information vulnerability in Game Launcher prior to version 6.0.07 allows local attacker to access app data with user interaction. | ||||
CVE-2022-36837 | 1 Samsung | 1 Samsung Email | 2024-08-03 | 6.2 Medium |
Intent redirection vulnerability using implicit intent in Samsung email prior to version 6.1.70.20 allows attacker to get sensitive information. | ||||
CVE-2022-36835 | 1 Samsung | 1 Samsung Internet Browser | 2024-08-03 | 3.3 Low |
Implicit Intent hijacking vulnerability in Samsung Internet Browser prior to version 17.0.7.34 allows attackers to access arbitrary files. | ||||
CVE-2022-36831 | 1 Samsung | 1 Notes | 2024-08-03 | 6.2 Medium |
Path traversal vulnerability in UriFileUtils of Samsung Notes prior to version 4.3.14.39 allows attacker to access some file as Samsung Notes permission. | ||||
CVE-2022-36833 | 2 Google, Samsung | 2 Android, Gameoptimizingservice | 2024-08-03 | 7.3 High |
Improper Privilege Management vulnerability in Game Optimizing Service prior to versions 3.3.04.0 in Android 10, and 3.5.04.8 in Android 11 and above allows local attacker to execute hidden function for developer by changing package name. | ||||
CVE-2022-36839 | 1 Samsung | 1 Checkout | 2024-08-03 | 5.9 Medium |
SQL injection vulnerability via IAPService in Samsung Checkout prior to version 5.0.53.1 allows attackers to access IAP information. | ||||
CVE-2022-36838 | 1 Samsung | 1 Galaxy Wearable | 2024-08-03 | 4 Medium |
Implicit Intent hijacking vulnerability in Galaxy Wearable prior to version 2.2.50 allows attacker to get sensitive information. | ||||
CVE-2022-36836 | 1 Samsung | 2 Charm, Charm Firmware | 2024-08-03 | 6.2 Medium |
Unprotected provider vulnerability in Charm by Samsung prior to version 1.2.3 allows attackers to read connection state without permission. | ||||
CVE-2022-36830 | 1 Samsung | 2 Charm, Charm Firmware | 2024-08-03 | 6.2 Medium |
PendingIntent hijacking vulnerability in cancelAlarmManager in Charm by Samsung prior to version 1.2.3 allows local attackers to access files without permission via implicit intent. | ||||
CVE-2022-36840 | 1 Samsung | 1 Update | 2024-08-03 | 4.5 Medium |
DLL hijacking vulnerability in Samsung Update Setup prior to version 2.2.9.50 allows attackers to execute arbitrary code. | ||||
CVE-2022-36832 | 1 Samsung | 1 Cameralyzer | 2024-08-03 | 4 Medium |
Improper access control vulnerability in WebApp in Cameralyzer prior to versions 3.2.22, 3.3.22, 3.4.22 and 3.5.51 allows attackers to access external storage as Cameralyzer privilege. | ||||
CVE-2022-36829 | 1 Samsung | 2 Charm, Charm Firmware | 2024-08-03 | 6.2 Medium |
PendingIntent hijacking vulnerability in releaseAlarm in Charm by Samsung prior to version 1.2.3 allows local attackers to access files without permission via implicit intent. |