Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-09 | CVE-2022-39890 | Unspecified vulnerability in Samsung Billing Improper Authorization in Samsung Billing prior to version 5.0.56.0 allows attacker to get sensitive information. | 7.5 |
| 2022-11-09 | CVE-2022-39891 | Out-of-bounds Write vulnerability in Samsung Editor Lite 4.0.40.14 Heap overflow vulnerability in parse_pce function in libsavsaudio.so in Editor Lite prior to version 4.0.41.3 allows attacker to get information. | 7.5 |
| 2022-11-09 | CVE-2022-39892 | Improper Authentication vulnerability in Samsung Pass Improper access control in Samsung Pass prior to version 4.0.05.1 allows attackers to unauthenticated access via keep open feature. | 9.8 |
| 2022-11-09 | CVE-2022-39893 | Information Exposure Through Log Files vulnerability in Samsung Galaxy Buds PRO Manage Sensitive information exposure vulnerability in FmmBaseModel in Galaxy Buds Pro Manage prior to version 4.1.22092751 allows local attackers with log access permission to get device identifier data through device log. | 3.3 |
| 2022-10-07 | CVE-2022-39857 | Unspecified vulnerability in Samsung Factorycamerafb 3.4.74 Improper access control vulnerability in CameraTestActivity in FactoryCameraFB prior to version 3.5.51 allows attackers to access broadcasting Intent as system uid privilege. | 5.5 |
| 2022-10-07 | CVE-2022-39858 | Path Traversal vulnerability in Samsung Factorycamera 2.1.96 Path traversal vulnerability in AtBroadcastReceiver in FactoryCamera prior to version 3.5.51 allows attackers to write arbitrary file as FactoryCamera privilege. | 7.8 |
| 2022-10-07 | CVE-2022-39859 | Unspecified vulnerability in Samsung Uphelper Library Implicit intent hijacking vulnerability in UPHelper library prior to version 3.0.12 allows attackers to access sensitive information via implicit intent. | 3.3 |
| 2022-10-07 | CVE-2022-39860 | Unspecified vulnerability in Samsung Quick Share 13.1.2.4/3.5.14.18/3.5.16.20 Improper access control vulnerability in QuickShare prior to version 13.2.3.5 allows attackers to access sensitive information via implicit broadcast. low complexity samsung | 3.5 |
| 2022-10-07 | CVE-2022-39861 | Missing Authorization vulnerability in Samsung Factorycamera 2.1.96 Unprotected Receiver in AtBroadcastReceiver in FactoryCamera prior to version 3.5.51 allows attackers to record video without camera privilege. | 3.3 |
| 2022-10-07 | CVE-2022-39862 | Unspecified vulnerability in Samsung Dynamic Lockscreen Improper authorization in Dynamic Lockscreen prior to SMR Sep-2022 Release 1 in Android R(11) and 3.3.03.66 in Android S(12) allows unauthorized use of javascript interface api. | 9.8 |