Vulnerabilities > Samsung
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-11 | CVE-2021-25405 | Unspecified vulnerability in Samsung Notes 2.0.02.31/4.2.00.22 An improper access control vulnerability in ScreenOffActivity in Samsung Notes prior to version 4.2.04.27 allows untrusted applications to access local files. | 5.5 |
| 2021-06-11 | CVE-2021-25406 | Incorrect Authorization vulnerability in Samsung Gear S Information exposure vulnerability in Gear S Plugin prior to version 2.2.05.20122441 allows unstrusted applications to access connected BT device information. | 6.5 |
| 2021-06-11 | CVE-2021-25418 | Incorrect Authorization vulnerability in Samsung Internet 13.2.1.46/13.2.1.70/14.0.1.20 Improper component protection vulnerability in Samsung Internet prior to version 14.0.1.62 allows untrusted applications to execute arbitrary activity in specific condition. | 7.8 |
| 2021-06-11 | CVE-2021-25419 | Unspecified vulnerability in Samsung Internet 13.2.1.46/13.2.1.70/14.0.1.20 Non-compliance of recommended secure coding scheme in Samsung Internet prior to version 14.0.1.62 allows attackers to display fake URL in address bar via phising URL link. | 6.5 |
| 2021-06-11 | CVE-2021-25420 | Information Exposure Through Log Files vulnerability in Samsung Galaxy Watch Plugin Improper log management vulnerability in Galaxy Watch PlugIn prior to version 2.2.05.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | 5.5 |
| 2021-06-11 | CVE-2021-25421 | Information Exposure Through Log Files vulnerability in Samsung Galaxy Watch 3 Plugin 2.2.03.22012751 Improper log management vulnerability in Galaxy Watch3 PlugIn prior to version 2.2.09.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | 5.5 |
| 2021-06-11 | CVE-2021-25422 | Information Exposure Through Log Files vulnerability in Samsung Watch Active Plugin Improper log management vulnerability in Watch Active PlugIn prior to version 2.2.07.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | 5.5 |
| 2021-06-11 | CVE-2021-25423 | Information Exposure Through Log Files vulnerability in Samsung Watch Active2 Plugin Improper log management vulnerability in Watch Active2 PlugIn prior to 2.2.08.21033151 version allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone via log. | 5.5 |
| 2021-06-11 | CVE-2021-25424 | Improper Authentication vulnerability in Samsung products Improper authentication vulnerability in Tizen bluetooth-frwk prior to Firmware update JUN-2021 Release allows bluetooth attacker to take over the user's bluetooth device without user awareness. | 8.8 |
| 2021-06-11 | CVE-2021-25425 | Improper Check for Unusual or Exceptional Conditions vulnerability in Samsung Health 6.16 Improper check vulnerability in Samsung Health prior to version 6.17 allows attacker to read internal cache data via exported component. | 5.3 |