Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-11 | CVE-2022-23995 | Incorrect Default Permissions vulnerability in Samsung Wear OS Unprotected component vulnerability in StBedtimeModeAlarmReceiver in Wear OS 3.0 prior to Firmware update Feb-2022 Release allows untrusted applications to change bedtime mode without a proper permission. | 3.3 |
| 2022-02-11 | CVE-2022-23996 | Incorrect Default Permissions vulnerability in Samsung Wear OS Unprotected component vulnerability in StTheaterModeReceiver in Wear OS 3.0 prior to Firmware update Feb-2022 Release allows untrusted applications to enable bedtime mode without a proper permission. | 3.3 |
| 2022-02-11 | CVE-2022-23997 | Unspecified vulnerability in Samsung Wear OS Unprotected component vulnerability in StTheaterModeDurationAlarmReceiver in Wear OS 3.0 prior to Firmware update Feb-2022 Release allows untrusted applications to disable theater mode without a proper permission. | 3.3 |
| 2022-02-11 | CVE-2022-23998 | Incorrect Authorization vulnerability in Samsung Camera Improper access control vulnerability in Camera prior to versions 11.1.02.16 in Android R(11), 10.5.03.77 in Android Q(10) and 9.0.6.68 in Android P(9) allows untrusted applications to take a picture in screenlock status. | 5.5 |
| 2022-02-11 | CVE-2022-24002 | Unspecified vulnerability in Samsung Link Sharing Improper Authorization vulnerability in Link Sharing prior to version 12.4.00.3 allows attackers to open protected activity via PreconditionActivity. | 5.3 |
| 2022-02-11 | CVE-2022-24003 | Unspecified vulnerability in Samsung Bixby Vision Exposure of Sensitive Information vulnerability in Bixby Vision prior to version 3.7.50.6 allows attackers to access internal data of Bixby Vision via unprotected intent. | 5.3 |
| 2022-02-11 | CVE-2022-24923 | Unspecified vulnerability in Samsung Searchwidget Improper access control vulnerability in Samsung SearchWidget prior to versions 2.3.00.6 in China models allows untrusted applications to load arbitrary URL and local files in webview. | 3.3 |
| 2022-02-11 | CVE-2022-24924 | Unspecified vulnerability in Samsung Livewallpaperservice An improper access control in LiveWallpaperService prior to versions 3.0.9.0 allows to create a specific named system directory without a proper permission. | 5.3 |
| 2022-02-11 | CVE-2022-24926 | Cross-site Scripting vulnerability in Samsung Smarttagplugin Improper input validation vulnerability in SmartTagPlugin prior to version 1.2.15-6 allows privileged attackers to trigger a XSS on a victim's devices. | 5.4 |
| 2022-02-11 | CVE-2022-24927 | Improper Privilege Management vulnerability in Samsung Video Player Improper privilege management vulnerability in Samsung Video Player prior to version 7.3.15.30 allows attackers to execute video files without permission. | 9.8 |