Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-26 | CVE-2023-21516 | Cross-site Scripting vulnerability in Samsung Galaxy Store 4.5.32.4/4.5.36.4/4.5.41.8 XSS vulnerability from InstantPlay in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store. | 9.6 |
| 2023-05-09 | CVE-2023-29092 | Improper Handling of Exceptional Conditions vulnerability in Samsung products An issue was discovered in Exynos Mobile Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, and Exynos 1080. | 7.8 |
| 2023-05-04 | CVE-2023-21484 | Improper Authentication vulnerability in Samsung Android 11.0/12.0/13.0 Improper access control vulnerability in AppLock prior to SMR May-2023 Release 1 allows local attackers without proper permission to execute a privileged operation. | 7.8 |
| 2023-05-04 | CVE-2023-21485 | Unspecified vulnerability in Samsung Android 11.0/12.0/13.0 Improper export of android application components vulnerability in VideoPreviewActivity in Call Settings to SMR May-2023 Release 1 allows physical attackers to access some media data stored in sandbox. low complexity samsung | 4.6 |
| 2023-05-04 | CVE-2023-21486 | Unspecified vulnerability in Samsung Android 11.0/12.0/13.0 Improper export of android application components vulnerability in ImagePreviewActivity in Call Settings to SMR May-2023 Release 1 allows physical attackers to access some media data stored in sandbox. low complexity samsung | 4.6 |
| 2023-05-04 | CVE-2023-21487 | Improper Authentication vulnerability in Samsung Android 11.0/12.0/13.0 Improper access control vulnerability in Telephony framework prior to SMR May-2023 Release 1 allows local attackers to change a call setting. | 3.3 |
| 2023-05-04 | CVE-2023-21488 | Unspecified vulnerability in Samsung Android 11.0/12.0/13.0 Improper access control vulnerablility in Tips prior to SMR May-2023 Release 1 allows local attackers to launch arbitrary activity in Tips. | 7.8 |
| 2023-05-04 | CVE-2023-21489 | Out-of-bounds Write vulnerability in Samsung Android 11.0/12.0/13.0 Heap out-of-bounds write vulnerability in bootloader prior to SMR May-2023 Release 1 allows a physical attacker to execute arbitrary code. | 6.8 |
| 2023-05-04 | CVE-2023-21490 | Unspecified vulnerability in Samsung Android 11.0/12.0/13.0 Improper access control in GearManagerStub prior to SMR May-2023 Release 1 allows a local attacker to delete applications installed by watchmanager. | 7.1 |
| 2023-05-04 | CVE-2023-21491 | Unspecified vulnerability in Samsung Android 12.0/13.0 Improper access control vulnerability in ThemeManager prior to SMR May-2023 Release 1 allows local attackers to write arbitrary files with system privilege. | 7.8 |