Vulnerabilities > Samsung > High

DATE CVE VULNERABILITY TITLE RISK
2022-04-11 CVE-2022-27837 Files or Directories Accessible to External Parties vulnerability in Samsung Accessibility 12.5.3.2
A vulnerability using PendingIntent in Accessibility prior to version 12.5.3.2 in Android R(11.0) and 13.0.1.1 in Android S(12.0) allows attacker to access the file with system privilege.
local
low complexity
samsung CWE-552
7.8
2022-04-11 CVE-2022-27838 Unspecified vulnerability in Samsung Factorycamera
Improper access control vulnerability in FactoryCamera prior to version 2.1.96 allows attacker to access the file with system privilege.
local
low complexity
samsung
7.8
2022-04-11 CVE-2022-27842 Uncontrolled Search Path Element vulnerability in Samsung Smart Switch PC
DLL hijacking vulnerability in Smart Switch PC prior to version 4.2.22022_4 allows attacker to execute abitrary code.
local
low complexity
samsung CWE-427
7.8
2022-04-11 CVE-2022-27843 Uncontrolled Search Path Element vulnerability in Samsung Kies 2.3.2.12074/2.3.2.120741313/2.5.0.120942711
DLL hijacking vulnerability in Kies prior to version 2.6.4.22014_2 allows attacker to execute abitrary code.
local
low complexity
samsung CWE-427
7.8
2022-04-11 CVE-2022-28541 Uncontrolled Search Path Element vulnerability in Samsung Update
Uncontrolled search path element vulnerability in Samsung Update prior to version 3.0.77.0 allows attackers to execute arbitrary code as Samsung Update permission.
local
low complexity
samsung CWE-427
7.8
2022-04-11 CVE-2022-28776 Unspecified vulnerability in Samsung Galaxy Store 4.5.32.4
Improper access control vulnerability in Galaxy Store prior to version 4.5.36.4 allows attacker to install applications from Galaxy Store without user interactions.
local
low complexity
samsung
7.8
2022-04-11 CVE-2022-28779 Uncontrolled Search Path Element vulnerability in Samsung Android USB Driver Windows Installer
Uncontrolled search path element vulnerability in Samsung Android USB Driver windows installer program prior to version 1.7.50 allows attacker to execute arbitrary code.
local
low complexity
samsung CWE-427
7.8
2022-04-05 CVE-2022-25154 Uncontrolled Search Path Element vulnerability in Samsung T5 Firmware
A DLL hijacking vulnerability in Samsung portable SSD T5 PC software before 1.6.9 could allow a local attacker to escalate privileges.
local
low complexity
samsung CWE-427
7.3
2022-01-10 CVE-2022-22285 Code Injection vulnerability in Samsung Reminder 11.6.08.6000/12.2.05.6000/12.3.01.3000
A vulnerability using PendingIntent in Reminder prior to version 12.2.05.0 in Android R(11.0) and 12.3.02.1000 in Android S(12.0) allows attackers to execute privileged action by hijacking and modifying the intent.
local
low complexity
samsung CWE-94
7.1
2022-01-10 CVE-2022-22286 Code Injection vulnerability in Samsung Bixby Routines
A vulnerability using PendingIntent in Bixby Routines prior to version 3.1.21.8 in Android R(11.0) and 2.6.30.5 in Android Q(10.0) allows attackers to execute privileged action by hijacking and modifying the intent.
local
low complexity
samsung CWE-94
7.1