Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-11 | CVE-2022-23994 | Unspecified vulnerability in Samsung Wear OS An Improper access control vulnerability in StBedtimeModeReceiver in Wear OS 3.0 prior to Firmware update Feb-2022 Release allows untrusted applications to change bedtime mode without a proper permission. | 3.3 |
| 2022-02-11 | CVE-2022-23995 | Incorrect Default Permissions vulnerability in Samsung Wear OS Unprotected component vulnerability in StBedtimeModeAlarmReceiver in Wear OS 3.0 prior to Firmware update Feb-2022 Release allows untrusted applications to change bedtime mode without a proper permission. | 3.3 |
| 2022-02-11 | CVE-2022-23996 | Incorrect Default Permissions vulnerability in Samsung Wear OS Unprotected component vulnerability in StTheaterModeReceiver in Wear OS 3.0 prior to Firmware update Feb-2022 Release allows untrusted applications to enable bedtime mode without a proper permission. | 3.3 |
| 2022-02-11 | CVE-2022-23997 | Unspecified vulnerability in Samsung Wear OS Unprotected component vulnerability in StTheaterModeDurationAlarmReceiver in Wear OS 3.0 prior to Firmware update Feb-2022 Release allows untrusted applications to disable theater mode without a proper permission. | 3.3 |
| 2022-02-11 | CVE-2022-23999 | Unspecified vulnerability in Google Android 10.0/11.0/12.0 PendingIntent hijacking vulnerability in CpaReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent. | 3.3 |
| 2022-02-11 | CVE-2022-24000 | Unspecified vulnerability in Google Android 10.0/11.0/12.0 PendingIntent hijacking vulnerability in DataUsageReminderReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent. | 3.3 |
| 2022-02-11 | CVE-2022-24923 | Unspecified vulnerability in Samsung Searchwidget Improper access control vulnerability in Samsung SearchWidget prior to versions 2.3.00.6 in China models allows untrusted applications to load arbitrary URL and local files in webview. | 3.3 |
| 2022-02-09 | CVE-2022-22779 | Improper Cross-boundary Removal of Sensitive Data vulnerability in Keybase The Keybase Clients for macOS and Windows before version 5.9.0 fails to properly remove exploded messages initiated by a user. | 3.7 |
| 2022-02-09 | CVE-2021-25939 | Server-Side Request Forgery (SSRF) vulnerability in Arangodb In ArangoDB, versions v3.7.0 through v3.9.0-alpha.1 have a feature which allows downloading a Foxx service from a publicly available URL. | 2.7 |
| 2022-02-07 | CVE-2022-0474 | Information Exposure vulnerability in Otrs Custom Contact Fields Full list of recipients from customer users in a contact field could be disclosed in notification emails event when the notification is set to be sent to each recipient individually. | 3.5 |