Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-07 | CVE-2022-30743 | Improper Privilege Management vulnerability in Samsung Account Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission. | 5.0 |
| 2022-06-07 | CVE-2022-30744 | Uncontrolled Search Path Element vulnerability in Samsung Kies DLL hijacking vulnerability in KiesWrapper in Samsung Kies prior to version 2.6.4.22043_1 allows attacker to execute arbitrary code. | 4.4 |
| 2022-06-07 | CVE-2022-30745 | Unspecified vulnerability in Samsung Quick Share 3.5.14.18/3.5.16.20 Improper access control vulnerability in Quick Share prior to version 13.1.2.4 allows attacker to access internal files in Quick Share. | 5.5 |
| 2022-06-07 | CVE-2022-30746 | Missing Authorization vulnerability in Samsung Smartthings 1.7.73.22 Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access senstive information remotely using javascript interface API. | 7.5 |
| 2022-06-07 | CVE-2022-30747 | Incorrect Default Permissions vulnerability in Samsung Smartthings 1.7.73.22/1.7.85.12 PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit Intent. | 2.1 |
| 2022-06-07 | CVE-2022-30748 | Unspecified vulnerability in Samsung Members Unprotected dynamic receiver in Samsung Members prior to version 4.2.005 allows attacker to launch arbitrary activity. | 2.1 |
| 2022-06-07 | CVE-2022-30749 | Improper Authentication vulnerability in Samsung Smartthings 1.7.73.22/1.7.85.12 Improper access control vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to add arbitrary smart devices by bypassing login activity. | 4.6 |
| 2022-05-03 | CVE-2022-28789 | Missing Authorization vulnerability in Samsung Voice Note Unprotected activities in Voice Note prior to version 21.3.51.11 allows attackers to record voice without user interaction. | 2.1 |
| 2022-05-03 | CVE-2022-28790 | Improper Authentication vulnerability in Samsung Link to Windows Service Improper authentication in Link to Windows Service prior to version 2.3.04.1 allows attacker to lock the device. | 2.1 |
| 2022-05-03 | CVE-2022-28791 | Improper Input Validation vulnerability in Samsung Galaxy Store 4.5.32.4 Improper input validation vulnerability in InstallAgent in Galaxy Store prior to version 4.5.41.8 allows attacker to overwrite files stored in a specific path. | 2.1 |