Vulnerabilities > Samsung > High

DATE CVE VULNERABILITY TITLE RISK
2022-01-10 CVE-2022-22288 Unspecified vulnerability in Samsung Galaxy Store 4.5.32.4/4.5.36.4
Improper authorization vulnerability in Galaxy Store prior to 4.5.36.5 allows remote app installation of the allowlist.
network
low complexity
samsung
7.5
2021-12-20 CVE-2021-42913 Insufficiently Protected Credentials vulnerability in Samsung Syncthru web Service
The SyncThru Web Service on Samsung SCX-6x55X printers allows an attacker to gain access to a list of SMB users and cleartext passwords by reading the HTML source code.
network
low complexity
samsung CWE-522
7.5
2021-11-16 CVE-2021-42114 Modern DRAM devices (PC-DDR4, LPDDR4X) are affected by a vulnerability in their internal Target Row Refresh (TRR) mitigation against Rowhammer attacks.
high complexity
samsung micron skhynix
8.3
2021-11-05 CVE-2021-25505 Improper Authentication vulnerability in Samsung Pass
Improper authentication in Samsung Pass prior to 3.0.02.4 allows to use app without authentication when lockscreen is unlocked.
local
low complexity
samsung CWE-287
7.8
2021-11-05 CVE-2021-25509 Improper Input Validation vulnerability in Samsung Flow
A missing input validation in Samsung Flow Windows application prior to Version 4.8.5.0 allows attackers to overwrite abtraty file in the Windows known folders.
local
low complexity
samsung CWE-20
7.1
2021-10-06 CVE-2021-25492 Out-of-bounds Read vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27
Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read.
local
low complexity
samsung CWE-125
7.1
2021-10-06 CVE-2021-25493 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27
Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read
local
low complexity
samsung CWE-119
7.1
2021-10-06 CVE-2021-25494 Classic Buffer Overflow vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27
A possible buffer overflow vulnerability in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows arbitrary code execution.
local
low complexity
samsung CWE-120
7.8
2021-10-06 CVE-2021-25495 Out-of-bounds Write vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27
A possible heap buffer overflow vulnerability in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows arbitrary code execution.
local
low complexity
samsung CWE-787
7.8
2021-10-06 CVE-2021-25496 Classic Buffer Overflow vulnerability in Samsung Notes 2.0.02.31/4.2.00.22/4.2.04.27
A possible buffer overflow vulnerability in maetd_dec_slice of libSPenBase library of Samsung Notes prior to Samsung Notes version 4.3.02.61 allows arbitrary code execution.
local
low complexity
samsung CWE-120
7.8