Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-04 | CVE-2021-25348 | Unspecified vulnerability in Samsung Internet Improper permission grant check in Samsung Internet prior to version 13.0.1.60 allows access to files in internal storage without authorized STORAGE permission. | 2.1 |
| 2021-03-04 | CVE-2021-25343 | Improper Authentication vulnerability in Samsung Members Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 (in Android O(8.1) and below) and 3.8.00.13 (in Android P(9.0) and above) allows unauthorized actions including denial of service attack by hijacking the provider. | 2.1 |
| 2021-03-04 | CVE-2021-25342 | Improper Authentication vulnerability in Samsung Members Calling of non-existent provider in SMP sdk prior to version 3.0.9 allows unauthorized actions including denial of service attack by hijacking the provider. | 2.1 |
| 2021-03-04 | CVE-2021-25341 | Improper Authentication vulnerability in Samsung S Assistant Calling of non-existent provider in S Assistant prior to version 6.5.01.22 allows unauthorized actions including denial of service attack by hijacking the provider. | 2.1 |
| 2021-03-04 | CVE-2021-25335 | Improper lockscreen status check in cocktailbar service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows unauthenticated users to access hidden notification contents over the lockscreen in specific condition. | 1.9 |
| 2021-03-04 | CVE-2021-25333 | Information Exposure vulnerability in Samsung PAY Mini Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen via scanning specific QR code. | 1.9 |
| 2021-03-04 | CVE-2021-25332 | Information Exposure vulnerability in Samsung PAY Mini Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to contacts information over the lockscreen in specific condition. | 1.9 |
| 2021-03-04 | CVE-2021-25331 | Information Exposure vulnerability in Samsung PAY Mini Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen in specific condition. | 1.9 |
| 2020-10-12 | CVE-2020-7811 | Deserialization of Untrusted Data vulnerability in Samsung Update Samsung Update 3.0.2.0 ~ 3.0.32.0 has a vulnerability that allows privilege escalation as commands crafted by attacker are executed while the engine deserializes the data received during inter-process communication | 4.6 |
| 2020-08-31 | CVE-2020-25054 | Improper Input Validation vulnerability in Samsung Exynos An issue was discovered on Samsung mobile devices with software through 2020-04-02 (Exynos modem chipsets). | 6.4 |