Vulnerabilities > Samsung

DATE CVE VULNERABILITY TITLE RISK
2021-03-25 CVE-2021-25351 Unspecified vulnerability in Samsung Account 10.7.07/10.8.0.4
Improper Access Control in EmailValidationView in Samsung Account prior to version 10.7.0.7 and 12.1.1.3 allows physically proximate attackers to log out user account on device without user password.
low complexity
samsung
2.4
2021-03-25 CVE-2021-25350 Information Exposure Through Log Files vulnerability in Samsung Account 10.7.07/10.8.0.4
Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically proximate attackers to access user information via log.
low complexity
samsung CWE-532
3.9
2021-03-25 CVE-2021-25349 Unspecified vulnerability in Samsung Slow Motion Editor
Using unsafe PendingIntent in Slow Motion Editor prior to version 3.5.18.5 allows local attackers unauthorized action without permission via hijacking the PendingIntent.
local
low complexity
samsung
7.8
2021-03-04 CVE-2021-25348 Unspecified vulnerability in Samsung Internet
Improper permission grant check in Samsung Internet prior to version 13.0.1.60 allows access to files in internal storage without authorized STORAGE permission.
low complexity
samsung
2.4
2021-03-04 CVE-2021-25343 Improper Authentication vulnerability in Samsung Members 2.4.81.13/2.4.85.11
Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 (in Android O(8.1) and below) and 3.8.00.13 (in Android P(9.0) and above) allows unauthorized actions including denial of service attack by hijacking the provider.
local
low complexity
samsung CWE-287
3.3
2021-03-04 CVE-2021-25342 Improper Authentication vulnerability in Samsung Members 2.4.81.13/2.4.85.11
Calling of non-existent provider in SMP sdk prior to version 3.0.9 allows unauthorized actions including denial of service attack by hijacking the provider.
local
low complexity
samsung CWE-287
3.3
2021-03-04 CVE-2021-25341 Improper Authentication vulnerability in Samsung S Assistant
Calling of non-existent provider in S Assistant prior to version 6.5.01.22 allows unauthorized actions including denial of service attack by hijacking the provider.
local
low complexity
samsung CWE-287
3.3
2021-03-04 CVE-2021-25335 Improper lockscreen status check in cocktailbar service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows unauthenticated users to access hidden notification contents over the lockscreen in specific condition.
local
high complexity
google samsung
2.5
2021-03-04 CVE-2021-25333 Information Exposure vulnerability in Samsung PAY Mini
Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen via scanning specific QR code.
low complexity
samsung CWE-200
2.4
2021-03-04 CVE-2021-25332 Information Exposure vulnerability in Samsung PAY Mini
Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to contacts information over the lockscreen in specific condition.
low complexity
samsung CWE-200
2.4