Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-08 | CVE-2021-25527 | Unspecified vulnerability in Samsung PAY Improper export of Android application components vulnerability in Samsung Pay (India only) prior to version 4.1.77 allows attacker to access Bill Pay and Recharge menu without authentication. | 3.3 |
| 2021-11-16 | CVE-2021-42114 | Modern DRAM devices (PC-DDR4, LPDDR4X) are affected by a vulnerability in their internal Target Row Refresh (TRR) mitigation against Rowhammer attacks. | 8.3 |
| 2021-11-05 | CVE-2021-25504 | Unspecified vulnerability in Samsung Group Sharing Intent redirection vulnerability in Group Sharing prior to 10.8.03.2 allows attacker to access contact information. | 4.0 |
| 2021-11-05 | CVE-2021-25505 | Improper Authentication vulnerability in Samsung Pass Improper authentication in Samsung Pass prior to 3.0.02.4 allows to use app without authentication when lockscreen is unlocked. | 7.8 |
| 2021-11-05 | CVE-2021-25506 | Incorrect Authorization vulnerability in Samsung Health Non-existent provider in Samsung Health prior to 6.19.1.0001 allows attacker to access it via malicious content provider or lead to denial of service. | 5.5 |
| 2021-11-05 | CVE-2021-25507 | Unspecified vulnerability in Samsung Flow Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure Folder without authorization. low complexity samsung | 5.7 |
| 2021-11-05 | CVE-2021-25508 | Improper Privilege Management vulnerability in Samsung Smartthings Improper privilege management vulnerability in API Key used in SmartThings prior to 1.7.73.22 allows an attacker to abuse the API key without limitation. | 9.8 |
| 2021-11-05 | CVE-2021-25509 | Improper Input Validation vulnerability in Samsung Flow A missing input validation in Samsung Flow Windows application prior to Version 4.8.5.0 allows attackers to overwrite abtraty file in the Windows known folders. | 7.1 |
| 2021-10-06 | CVE-2021-25492 | Out-of-bounds Read vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27 Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read. | 7.1 |
| 2021-10-06 | CVE-2021-25493 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27 Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read | 7.1 |