Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-08 | CVE-2022-39901 | Improper Authentication vulnerability in Samsung Exynos Firmware Improper authentication in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to disable the network traffic encryption between UE and gNodeB. | 6.5 |
| 2022-12-08 | CVE-2022-39902 | Unspecified vulnerability in Samsung Exynos Firmware Improper authorization in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to get sensitive information including IMEI via emergency call. | 7.5 |
| 2022-12-08 | CVE-2022-39909 | Insufficient Verification of Data Authenticity vulnerability in Samsung Gear Iconx PC Manager 2.1.220405.51 Insufficient verification of data authenticity vulnerability in Samsung Gear IconX PC Manager prior to version 2.1.221019.51 allows local attackers to create arbitrary file using symbolic link. | 5.5 |
| 2022-12-08 | CVE-2022-39910 | Unspecified vulnerability in Samsung Pass 4.0.05.1 Improper access control vulnerability in Samsung Pass prior to version 4.0.06.7 allow physical attackers to access data of Samsung Pass on a certain state of an unlocked device using pop-up view. high complexity samsung | 4.2 |
| 2022-12-08 | CVE-2022-39911 | Unspecified vulnerability in Samsung Pass 4.0.05.1 Improper check or handling of exceptional conditions vulnerability in Samsung Pass prior to version 4.0.06.1 allows attacker to access Samsung Pass. low complexity samsung | 6.8 |
| 2022-12-08 | CVE-2022-39915 | Unspecified vulnerability in Samsung Calendar Improper access control vulnerability in Calendar prior to versions 11.6.08.0 in Android Q(10), 12.2.11.3000 in Android R(11), 12.3.07.2000 in Android S(12), and 12.4.02.0 in Android T(13) allows attackers to access sensitive information via implicit intent. | 5.5 |
| 2022-11-09 | CVE-2022-39881 | Out-of-bounds Read vulnerability in Samsung Exynos Firmware Improper input validation vulnerability for processing SIB12 PDU in Exynos modems prior to SMR Sep-2022 Release allows remote attacker to read out of bounds memory. | 9.1 |
| 2022-11-09 | CVE-2022-39889 | Unspecified vulnerability in Samsung Galaxywatch4Plugin 2.2.11.22102751 Improper access control vulnerability in GalaxyWatch4Plugin prior to versions 2.2.11.22101351 and 2.2.12.22101351 allows attackers to access wearable device information. | 3.3 |
| 2022-11-09 | CVE-2022-39890 | Unspecified vulnerability in Samsung Billing Improper Authorization in Samsung Billing prior to version 5.0.56.0 allows attacker to get sensitive information. | 7.5 |
| 2022-11-09 | CVE-2022-39891 | Out-of-bounds Write vulnerability in Samsung Editor Lite 4.0.40.14 Heap overflow vulnerability in parse_pce function in libsavsaudio.so in Editor Lite prior to version 4.0.41.3 allows attacker to get information. | 7.5 |