Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-11 | CVE-2022-28542 | Incorrect Authorization vulnerability in Samsung Galaxy Store 4.5.32.4 Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.40.5 allows local attackers to access privileged content providers as Galaxy Store permission. | 2.1 |
| 2022-04-11 | CVE-2022-28543 | Path Traversal vulnerability in Samsung Flow 4.8.03.5/4.8.5.0 Path traversal vulnerability in Samsung Flow prior to version 4.8.07.4 allows local attackers to read arbitrary files as Samsung Flow permission. | 2.1 |
| 2022-04-11 | CVE-2022-28544 | Path Traversal vulnerability in Samsung Galaxy Store 4.5.32.4 Path traversal vulnerability in unzip method of InstallAgentCommonHelper in Galaxy store prior to version 4.5.40.5 allows attacker to access the file of Galaxy store. | 5.0 |
| 2022-04-11 | CVE-2022-28775 | Unspecified vulnerability in Samsung Flow 4.8.03.5/4.8.5.0 Improper access control vulnerability in Samsung Flow prior to version 4.8.06.5 allows attacker to write the file without Samsung Flow permission. | 3.3 |
| 2022-04-11 | CVE-2022-28776 | Unspecified vulnerability in Samsung Galaxy Store 4.5.32.4 Improper access control vulnerability in Galaxy Store prior to version 4.5.36.4 allows attacker to install applications from Galaxy Store without user interactions. | 7.8 |
| 2022-04-11 | CVE-2022-28777 | Unspecified vulnerability in Samsung Members Improper access control vulnerability in Samsung Members prior to version 13.6.08.5 allows local attacker to execute call function without CALL_PHONE permission. | 3.3 |
| 2022-04-11 | CVE-2022-28778 | Unspecified vulnerability in Samsung Security Supporter Improper access control vulnerability in Samsung Security Supporter prior to version 1.2.40.0 allows attacker to set the arbitrary folder as Secret Folder without Samsung Security Supporter permission | 3.3 |
| 2022-04-11 | CVE-2022-28779 | Uncontrolled Search Path Element vulnerability in Samsung Android USB Driver Windows Installer Uncontrolled search path element vulnerability in Samsung Android USB Driver windows installer program prior to version 1.7.50 allows attacker to execute arbitrary code. | 4.6 |
| 2022-04-05 | CVE-2022-25154 | Uncontrolled Search Path Element vulnerability in Samsung T5 Firmware A DLL hijacking vulnerability in Samsung portable SSD T5 PC software before 1.6.9 could allow a local attacker to escalate privileges. | 4.4 |
| 2022-03-10 | CVE-2022-25823 | Information Exposure Through Log Files vulnerability in Samsung Galaxy Watch Plugin 2.2.05.21033151/2.2.05.22012751 Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.220126741 allows attackers to access user information in log. | 3.3 |