Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-05 | CVE-2022-36835 | Unspecified vulnerability in Samsung Internet Browser Implicit Intent hijacking vulnerability in Samsung Internet Browser prior to version 17.0.7.34 allows attackers to access arbitrary files. | 3.3 |
| 2022-08-05 | CVE-2022-36836 | Missing Authorization vulnerability in Samsung Charm Firmware Unprotected provider vulnerability in Charm by Samsung prior to version 1.2.3 allows attackers to read connection state without permission. | 5.5 |
| 2022-08-05 | CVE-2022-36837 | Unspecified vulnerability in Samsung Email Intent redirection vulnerability using implicit intent in Samsung email prior to version 6.1.70.20 allows attacker to get sensitive information. | 5.5 |
| 2022-08-05 | CVE-2022-36838 | Unspecified vulnerability in Samsung Galaxy Wearable Implicit Intent hijacking vulnerability in Galaxy Wearable prior to version 2.2.50 allows attacker to get sensitive information. low complexity samsung | 4.6 |
| 2022-08-05 | CVE-2022-36839 | SQL Injection vulnerability in Samsung Checkout SQL injection vulnerability via IAPService in Samsung Checkout prior to version 5.0.53.1 allows attackers to access IAP information. | 5.5 |
| 2022-08-05 | CVE-2022-36840 | Uncontrolled Search Path Element vulnerability in Samsung Update DLL hijacking vulnerability in Samsung Update Setup prior to version 2.2.9.50 allows attackers to execute arbitrary code. | 7.8 |
| 2022-08-04 | CVE-2022-35858 | Memory Leak vulnerability in Samsung Mtower 0.3.0 The TEE_PopulateTransientObject and __utee_from_attr functions in Samsung mTower 0.3.0 allow a trusted application to trigger a memory overwrite, denial of service, and information disclosure by invoking the function TEE_PopulateTransientObject with a large number in the parameter attrCount. | 7.8 |
| 2022-07-12 | CVE-2022-33705 | Unspecified vulnerability in Samsung Calendar 11.6.08.0/12.2.11.3000 Information exposure in Calendar prior to version 12.3.05.10000 allows attacker to access calendar schedule without READ_CALENDAR permission. | 3.3 |
| 2022-07-12 | CVE-2022-33706 | Unspecified vulnerability in Samsung Gallery Improper access control vulnerability in Samsung Gallery prior to version 13.1.05.8 allows physical attackers to access the pictures using S Pen air gesture. low complexity samsung | 2.4 |
| 2022-07-12 | CVE-2022-33707 | Use of Insufficiently Random Values vulnerability in Samsung Find MY Mobile Improper identifier creation logic in Find My Mobile prior to version 7.2.24.12 allows attacker to identify the device. | 5.3 |