Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-07 | CVE-2022-30744 | Uncontrolled Search Path Element vulnerability in Samsung Kies DLL hijacking vulnerability in KiesWrapper in Samsung Kies prior to version 2.6.4.22043_1 allows attacker to execute arbitrary code. | 7.8 |
| 2022-06-07 | CVE-2022-30745 | Unspecified vulnerability in Samsung Quick Share 3.5.14.18/3.5.16.20 Improper access control vulnerability in Quick Share prior to version 13.1.2.4 allows attacker to access internal files in Quick Share. | 5.5 |
| 2022-06-07 | CVE-2022-30746 | Missing Authorization vulnerability in Samsung Smartthings 1.7.73.22 Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access senstive information remotely using javascript interface API. | 7.5 |
| 2022-06-07 | CVE-2022-30747 | Incorrect Default Permissions vulnerability in Samsung Smartthings 1.7.73.22/1.7.85.12 PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit Intent. | 5.5 |
| 2022-06-07 | CVE-2022-30748 | Unspecified vulnerability in Samsung Members Unprotected dynamic receiver in Samsung Members prior to version 4.2.005 allows attacker to launch arbitrary activity. | 5.5 |
| 2022-06-07 | CVE-2022-30749 | Improper Authentication vulnerability in Samsung Smartthings 1.7.73.22/1.7.85.12 Improper access control vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to add arbitrary smart devices by bypassing login activity. | 7.8 |
| 2022-05-03 | CVE-2022-28789 | Missing Authorization vulnerability in Samsung Voice Note Unprotected activities in Voice Note prior to version 21.3.51.11 allows attackers to record voice without user interaction. | 5.5 |
| 2022-05-03 | CVE-2022-28790 | Improper Authentication vulnerability in Samsung Link to Windows Service Improper authentication in Link to Windows Service prior to version 2.3.04.1 allows attacker to lock the device. | 3.3 |
| 2022-05-03 | CVE-2022-28791 | Improper Input Validation vulnerability in Samsung Galaxy Store 4.5.32.4/4.5.36.4 Improper input validation vulnerability in InstallAgent in Galaxy Store prior to version 4.5.41.8 allows attacker to overwrite files stored in a specific path. | 5.5 |
| 2022-05-03 | CVE-2022-28792 | Uncontrolled Search Path Element vulnerability in Samsung Gear Iconx PC Manager DLL hijacking vulnerability in Gear IconX PC Manager prior to version 2.1.220405.51 allows attacker to execute arbitrary code. | 7.8 |