Vulnerabilities > Samsung > Internet

DATE CVE VULNERABILITY TITLE RISK
2022-01-10 CVE-2022-22284 Improper Authentication vulnerability in Samsung Internet
Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to bypass secret mode password authentication
local
low complexity
samsung CWE-287
5.5
2021-12-08 CVE-2021-25520 Cross-site Scripting vulnerability in Samsung Internet
Insecure caller check and input validation vulnerabilities in SearchKeyword deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to execute script codes in Samsung Internet.
network
low complexity
samsung CWE-79
6.1
2021-12-08 CVE-2021-25521 Files or Directories Accessible to External Parties vulnerability in Samsung Internet
Insecure caller check in sharevia deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to get current tab URL in Samsung Internet.
local
low complexity
samsung CWE-552
3.3
2021-09-09 CVE-2021-25466 Improper Authentication vulnerability in Samsung Internet
Improper scheme check vulnerability in Samsung Internet prior to version 15.0.2.47 allows attackers to perform Man-in-the-middle attack and obtain Samsung Account token.
network
high complexity
samsung CWE-287
5.9
2021-08-05 CVE-2021-25445 Improper Authentication vulnerability in Samsung Internet
Unprotected component vulnerability in Samsung Internet prior to version 14.2 allows untrusted application to access internal files in Samsung Internet.
network
low complexity
samsung CWE-287
5.3
2021-06-11 CVE-2021-25400 Unspecified vulnerability in Samsung Internet 13.2.1.46/13.2.1.70
Intent redirection vulnerability in Samsung Internet prior to version 14.0.1.20 allows attacker to execute privileged action.
local
low complexity
samsung
7.8
2021-06-11 CVE-2021-25418 Incorrect Authorization vulnerability in Samsung Internet 13.2.1.46/13.2.1.70/14.0.1.20
Improper component protection vulnerability in Samsung Internet prior to version 14.0.1.62 allows untrusted applications to execute arbitrary activity in specific condition.
local
low complexity
samsung CWE-863
7.8
2021-06-11 CVE-2021-25419 Unspecified vulnerability in Samsung Internet 13.2.1.46/13.2.1.70/14.0.1.20
Non-compliance of recommended secure coding scheme in Samsung Internet prior to version 14.0.1.62 allows attackers to display fake URL in address bar via phising URL link.
network
low complexity
samsung
6.5
2021-03-25 CVE-2021-25366 Unspecified vulnerability in Samsung Internet 13.2.1.46
Improper access control in Samsung Internet prior to version 13.2.1.70 allows physically proximate attackers to bypass the secret mode's authentication.
low complexity
samsung
2.9
2021-03-25 CVE-2021-25354 Unspecified vulnerability in Samsung Internet
Improper input check in Samsung Internet prior to version 13.2.1.46 allows attackers to launch non-exported activity in Samsung Browser via malicious deeplink.
local
low complexity
samsung
5.3