Filtered by vendor Samsung
Subscriptions
Total
1083 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-30736 | 1 Samsung | 1 Account | 2024-08-03 | 5.3 Medium |
| Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission. | ||||
| CVE-2022-30732 | 1 Samsung | 1 Account | 2024-08-03 | 5.5 Medium |
| Exposure of Sensitive Information vulnerability in Samsung Account prior to version 13.2.00.6 allows attacker to access sensitive information via onActivityResult. | ||||
| CVE-2022-30734 | 1 Samsung | 1 Account | 2024-08-03 | 4 Medium |
| Sensitive information exposure in Sign-out log in Samsung Account prior to version 13.2.00.6 allows attackers to get an user email or phone number without permission. | ||||
| CVE-2022-30745 | 1 Samsung | 1 Quick Share | 2024-08-03 | 4 Medium |
| Improper access control vulnerability in Quick Share prior to version 13.1.2.4 allows attacker to access internal files in Quick Share. | ||||
| CVE-2022-30741 | 1 Samsung | 1 Find My Mobile | 2024-08-03 | 3.3 Low |
| Sensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7.2.24.12 allows local attackers with log access permission to get sim card information through device log. | ||||
| CVE-2022-30744 | 1 Samsung | 1 Kies | 2024-08-03 | 6.2 Medium |
| DLL hijacking vulnerability in KiesWrapper in Samsung Kies prior to version 2.6.4.22043_1 allows attacker to execute arbitrary code. | ||||
| CVE-2022-30733 | 1 Samsung | 1 Account | 2024-08-03 | 4 Medium |
| Sensitive information exposure in Sign-in log in Samsung Account prior to version 13.2.00.6 allows attackers to get an user email or phone number without permission. | ||||
| CVE-2022-30743 | 1 Samsung | 1 Account | 2024-08-03 | 5.3 Medium |
| Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission. | ||||
| CVE-2022-30742 | 1 Samsung | 1 Find My Mobile | 2024-08-03 | 3.3 Low |
| Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2.24.12 allows local attackers with log access permissio to get sim card information through device log. | ||||
| CVE-2022-30731 | 1 Samsung | 1 My Files | 2024-08-03 | 5.1 Medium |
| Improper access control vulnerability in My Files prior to version 13.1.00.193 allows attackers to access arbitrary private files in My Files application. | ||||
| CVE-2022-30739 | 1 Samsung | 1 Account | 2024-08-03 | 4 Medium |
| Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get an user email or phone number with a normal level permission. | ||||
| CVE-2022-30738 | 1 Samsung | 1 Internet | 2024-08-03 | 4.3 Medium |
| Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address bar via executing script. | ||||
| CVE-2022-30735 | 1 Samsung | 1 Account | 2024-08-03 | 5.9 Medium |
| Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the access_token without permission. | ||||
| CVE-2022-30746 | 1 Samsung | 1 Smartthings | 2024-08-03 | 7.5 High |
| Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access senstive information remotely using javascript interface API. | ||||
| CVE-2022-30747 | 1 Samsung | 1 Smartthings | 2024-08-03 | 5.5 Medium |
| PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit Intent. | ||||
| CVE-2022-28792 | 1 Samsung | 1 Gear Iconx Pc Manager | 2024-08-03 | 6.2 Medium |
| DLL hijacking vulnerability in Gear IconX PC Manager prior to version 2.1.220405.51 allows attacker to execute arbitrary code. The patch adds proper absolute path to prevent dll hijacking. | ||||
| CVE-2022-28790 | 1 Samsung | 1 Link To Windows Service | 2024-08-03 | 4 Medium |
| Improper authentication in Link to Windows Service prior to version 2.3.04.1 allows attacker to lock the device. The patch adds proper caller signature check logic. | ||||
| CVE-2022-28776 | 1 Samsung | 1 Galaxy Store | 2024-08-03 | 5.9 Medium |
| Improper access control vulnerability in Galaxy Store prior to version 4.5.36.4 allows attacker to install applications from Galaxy Store without user interactions. | ||||
| CVE-2022-28789 | 1 Samsung | 1 Voice Note | 2024-08-03 | 6.2 Medium |
| Unprotected activities in Voice Note prior to version 21.3.51.11 allows attackers to record voice without user interaction. The patch adds proper permission for vulnerable activities. | ||||
| CVE-2022-28779 | 1 Samsung | 1 Android Usb Driver Windows Installer | 2024-08-03 | 5.3 Medium |
| Uncontrolled search path element vulnerability in Samsung Android USB Driver windows installer program prior to version 1.7.50 allows attacker to execute arbitrary code. | ||||