Vulnerabilities > Samsung > Internet > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-06 | CVE-2024-20828 | Incorrect Authorization vulnerability in Samsung Internet Improper authorization verification vulnerability in Samsung Internet prior to version 24.0 allows physical attackers to access files downloaded in SecretMode without proper authentication. | 4.6 |
| 2023-08-10 | CVE-2023-30704 | Unspecified vulnerability in Samsung Internet Improper Authorization vulnerability in Samsung Internet prior to version 22.0.0.35 allows physical attacker access downloaded files in Secret Mode without user authentication. low complexity samsung | 4.6 |
| 2023-07-06 | CVE-2023-30674 | Unspecified vulnerability in Samsung Internet Improper configuration in Samsung Internet prior to version 21.0.0.41 allows attacker to bypass SameSite Cookie. | 6.5 |
| 2022-10-07 | CVE-2022-39873 | Unspecified vulnerability in Samsung Internet Improper authorization vulnerability in Samsung Internet prior to version 18.0.4.14 allows physical attackers to add bookmarks in secret mode without user authentication. low complexity samsung | 4.6 |
| 2022-06-07 | CVE-2022-30738 | Improper Check for Unusual or Exceptional Conditions vulnerability in Samsung Internet Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address bar via executing script. | 4.3 |
| 2022-06-07 | CVE-2022-30740 | Insecure Storage of Sensitive Information vulnerability in Samsung Internet Improper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69 allows physical attackers to guess stored credit card numbers. | 4.3 |
| 2022-04-11 | CVE-2022-27839 | Improper Authentication vulnerability in Samsung Internet Improper authentication vulnerability in SecretMode in Samsung Internet prior to version 16.2.1 allows attackers to access bookmark tab without proper credentials. | 4.0 |
| 2022-01-14 | CVE-2022-22290 | Improper Handling of Exceptional Conditions vulnerability in Samsung Internet Incorrect download source UI in Downloads in Samsung Internet prior to 16.0.6.23 allows attackers to perform domain spoofing via a crafted HTML page. | 6.5 |
| 2022-01-10 | CVE-2022-22284 | Improper Authentication vulnerability in Samsung Internet Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to bypass secret mode password authentication | 5.5 |
| 2021-12-08 | CVE-2021-25520 | Cross-site Scripting vulnerability in Samsung Internet Insecure caller check and input validation vulnerabilities in SearchKeyword deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to execute script codes in Samsung Internet. | 6.1 |