Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-07 | CVE-2023-42551 | Exposure of Resource to Wrong Sphere vulnerability in Samsung Account Use of implicit intent for sensitive communication vulnerability in startTncActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | 6.5 |
| 2023-11-07 | CVE-2023-42552 | Unspecified vulnerability in Samsung Firewall 12.1.00.24/13.1.00.16 Implicit intent hijacking vulnerability in Firewall application prior to versions 12.1.00.24 in Android 11, 13.1.00.16 in Android 12 and 14.1.00.7 in Android 13 allows 3rd party application to tamper the database of Firewall. | 3.3 |
| 2023-11-07 | CVE-2023-42553 | Unspecified vulnerability in Samsung Email 6.1.82.0 Improper authorization verification vulnerability in Samsung Email prior to version 6.1.90.4 allows attackers to read sandbox data of email. | 5.3 |
| 2023-11-07 | CVE-2023-42554 | Improper Authentication vulnerability in Samsung Pass 4.0.05.1/4.2.03.1 Improper Authentication vulnerabiity in Samsung Pass prior to version 4.3.00.17 allows physical attackers to bypass authentication. | 6.8 |
| 2023-11-07 | CVE-2023-42555 | Unspecified vulnerability in Samsung Easysetup Use of implicit intent for sensitive communication vulnerability in EasySetup prior to version 11.1.13 allows attackers to get the bluetooth address of user device. | 5.5 |
| 2023-10-04 | CVE-2023-30690 | Improper Input Validation vulnerability in Samsung Android 11.0/12.0 Improper input validation vulnerability in Duo prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities. | 7.8 |
| 2023-10-04 | CVE-2023-30692 | Unspecified vulnerability in Samsung Android 11.0/12.0 Improper input validation vulnerability in Evaluator prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities. | 7.8 |
| 2023-10-04 | CVE-2023-30727 | Unspecified vulnerability in Samsung Android 11.0/12.0 Improper access control vulnerability in SecSettings prior to SMR Oct-2023 Release 1 allows attackers to enable Wi-Fi and connect arbitrary Wi-Fi without User Interaction. | 7.5 |
| 2023-10-04 | CVE-2023-30731 | Unspecified vulnerability in Samsung Android 12.0/13.0 Logic error in package installation via debugger command prior to SMR Oct-2023 Release 1 allows physical attacker to install an application that has different build type. low complexity samsung | 4.6 |
| 2023-10-04 | CVE-2023-30732 | Unspecified vulnerability in Samsung Android 13.0 Improper access control in system property prior to SMR Oct-2023 Release 1 allows local attacker to get CPU serial number. | 3.3 |