Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-25 | CVE-2021-25368 | Improper Authentication vulnerability in Samsung Cloud Hijacking vulnerability in Samsung Cloud prior to version 4.7.0.3 allows attackers to intercept when the provider is executed. | 5.0 |
| 2021-03-25 | CVE-2021-25367 | Path Traversal vulnerability in Samsung Notes 2.0.02.31 Path Traversal vulnerability in Samsung Notes prior to version 4.2.00.22 allows attackers to access local files without permission. | 5.5 |
| 2021-03-25 | CVE-2021-25366 | Unspecified vulnerability in Samsung Internet 13.2.1.46 Improper access control in Samsung Internet prior to version 13.2.1.70 allows physically proximate attackers to bypass the secret mode's authentication. | 3.6 |
| 2021-03-25 | CVE-2021-25355 | Incorrect Default Permissions vulnerability in Samsung Notes 2.0.02.31 Using unsafe PendingIntent in Samsung Notes prior to version 4.2.00.22 allows local attackers unauthorized action without permission via hijacking the PendingIntent. | 4.6 |
| 2021-03-25 | CVE-2021-25354 | Unspecified vulnerability in Samsung Internet Improper input check in Samsung Internet prior to version 13.2.1.46 allows attackers to launch non-exported activity in Samsung Browser via malicious deeplink. | 5.3 |
| 2021-03-25 | CVE-2021-25353 | Unspecified vulnerability in Samsung Galaxy Themes Using empty PendingIntent in Galaxy Themes prior to version 5.2.00.1215 allows local attackers to read/write private file directories of Galaxy Themes application without permission via hijacking the PendingIntent. | 3.6 |
| 2021-03-25 | CVE-2021-25352 | Exposure of Resource to Wrong Sphere vulnerability in Samsung Bixby Voice Using PendingIntent with implicit intent in Bixby Voice prior to version 3.0.52.14 allows attackers to execute privileged action by hijacking and modifying the intent. | 4.6 |
| 2021-03-25 | CVE-2021-25351 | Unspecified vulnerability in Samsung Account 10.7.07/10.8.0.4 Improper Access Control in EmailValidationView in Samsung Account prior to version 10.7.0.7 and 12.1.1.3 allows physically proximate attackers to log out user account on device without user password. | 2.1 |
| 2021-03-25 | CVE-2021-25350 | Information Exposure Through Log Files vulnerability in Samsung Account Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically proximate attackers to access user information via log. | 2.1 |
| 2021-03-25 | CVE-2021-25349 | Unspecified vulnerability in Samsung Slow Motion Editor Using unsafe PendingIntent in Slow Motion Editor prior to version 3.5.18.5 allows local attackers unauthorized action without permission via hijacking the PendingIntent. | 4.6 |