Vulnerabilities > Samsung > Internet
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-14 | CVE-2022-22290 | Improper Handling of Exceptional Conditions vulnerability in Samsung Internet Incorrect download source UI in Downloads in Samsung Internet prior to 16.0.6.23 allows attackers to perform domain spoofing via a crafted HTML page. | 6.5 |
| 2022-01-10 | CVE-2022-22284 | Improper Authentication vulnerability in Samsung Internet Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to bypass secret mode password authentication | 5.5 |
| 2021-12-08 | CVE-2021-25520 | Cross-site Scripting vulnerability in Samsung Internet Insecure caller check and input validation vulnerabilities in SearchKeyword deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to execute script codes in Samsung Internet. | 6.1 |
| 2021-12-08 | CVE-2021-25521 | Files or Directories Accessible to External Parties vulnerability in Samsung Internet Insecure caller check in sharevia deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to get current tab URL in Samsung Internet. | 3.3 |
| 2021-09-09 | CVE-2021-25466 | Improper Authentication vulnerability in Samsung Internet Improper scheme check vulnerability in Samsung Internet prior to version 15.0.2.47 allows attackers to perform Man-in-the-middle attack and obtain Samsung Account token. | 5.9 |
| 2021-08-05 | CVE-2021-25445 | Improper Authentication vulnerability in Samsung Internet Unprotected component vulnerability in Samsung Internet prior to version 14.2 allows untrusted application to access internal files in Samsung Internet. | 5.3 |
| 2021-06-11 | CVE-2021-25400 | Unspecified vulnerability in Samsung Internet 13.2.1.46/13.2.1.70 Intent redirection vulnerability in Samsung Internet prior to version 14.0.1.20 allows attacker to execute privileged action. | 7.8 |
| 2021-06-11 | CVE-2021-25418 | Incorrect Authorization vulnerability in Samsung Internet 13.2.1.46/13.2.1.70/14.0.1.20 Improper component protection vulnerability in Samsung Internet prior to version 14.0.1.62 allows untrusted applications to execute arbitrary activity in specific condition. | 7.8 |
| 2021-06-11 | CVE-2021-25419 | Unspecified vulnerability in Samsung Internet 13.2.1.46/13.2.1.70/14.0.1.20 Non-compliance of recommended secure coding scheme in Samsung Internet prior to version 14.0.1.62 allows attackers to display fake URL in address bar via phising URL link. | 6.5 |
| 2021-03-25 | CVE-2021-25366 | Unspecified vulnerability in Samsung Internet 13.2.1.46 Improper access control in Samsung Internet prior to version 13.2.1.70 allows physically proximate attackers to bypass the secret mode's authentication. low complexity samsung | 2.9 |