Bixby CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (11 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-20965	1 Samsung	1 Bixby	2025-07-18	6.2 Medium
Improper handling of insufficient permission in Bixby wakeup prior to version 2.3.74.8 allows local attackers to access sensitive data.
CVE-2023-21431	1 Samsung	1 Bixby Vision	2025-03-24	3.3 Low
Improper input validation in Bixby Vision prior to version 3.7.70.17 allows attacker to access data of Bixby Vision.
CVE-2023-42543	1 Samsung	1 Bixby Voice	2024-11-21	6.2 Medium
Improper verification of intent by broadcast receiver vulnerability in Bixby Voice prior to version 3.3.35.12 allows attackers to access arbitrary data with Bixby Voice privilege.
CVE-2023-21465	1 Samsung	1 Bixbytouch	2024-11-21	5.5 Medium
Improper access control vulnerability in BixbyTouch prior to version 3.2.02.5 in China models allows untrusted applications access local files.
CVE-2022-25824	1 Samsung	1 Bixby Touch	2024-11-21	4 Medium
Improper access control vulnerability in BixbyTouch prior to version 2.2.00.6 in China models allows untrusted applications to load arbitrary URL and local files in webview.
CVE-2022-24003	1 Samsung	1 Bixby Vision	2024-11-21	4 Medium
Exposure of Sensitive Information vulnerability in Bixby Vision prior to version 3.7.50.6 allows attackers to access internal data of Bixby Vision via unprotected intent.
CVE-2022-23434	2 Google, Samsung	2 Android, Bixby	2024-11-21	4.4 Medium
A vulnerability using PendingIntent in Bixby Vision prior to versions 3.7.60.8 in Android S(12), 3.7.50.6 in Andorid R(11) and below allows attackers to execute privileged action by hijacking and modifying the intent.
CVE-2022-22286	2 Google, Samsung	2 Android, Bixby Routines	2024-11-21	4.4 Medium
A vulnerability using PendingIntent in Bixby Routines prior to version 3.1.21.8 in Android R(11.0) and 2.6.30.5 in Android Q(10.0) allows attackers to execute privileged action by hijacking and modifying the intent.
CVE-2021-25398	1 Samsung	1 Bixby Voice	2024-11-21	3.3 Low
Intent redirection vulnerability in Bixby Voice prior to version 3.1.12 allows attacker to access contacts.
CVE-2021-25380	1 Samsung	1 Bixby	2024-11-21	5.8 Medium
Improper handling of exceptional conditions in Bixby prior to version 3.0.53.02 allows attacker to execute the actions registered by the user.
CVE-2021-25352	1 Samsung	1 Bixby Voice	2024-11-21	5.5 Medium
Using PendingIntent with implicit intent in Bixby Voice prior to version 3.0.52.14 allows attackers to execute privileged action by hijacking and modifying the intent.

Page 1 of 1.