Vulnerabilities > Samsung > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-11 | CVE-2021-25404 | Insecure Storage of Sensitive Information vulnerability in Samsung Smartthings Firmware Information Exposure vulnerability in SmartThings prior to version 1.7.64.21 allows attacker to access user information via log. | 3.3 |
| 2021-06-11 | CVE-2021-25403 | Unspecified vulnerability in Samsung Account 10.7.07/12.2.0.9 Intent redirection vulnerability in Samsung Account prior to version 10.8.0.4 in Android P(9.0) and below, and 12.2.0.9 in Android Q(10.0) and above allows attacker to access contacts and file provider using SettingWebView component. | 3.3 |
| 2021-06-11 | CVE-2021-25402 | Insecure Storage of Sensitive Information vulnerability in Samsung Notes 2.0.02.31/4.2.00.22 Information Exposure vulnerability in Samsung Notes prior to version 4.2.04.27 allows attacker to access s pen latency information. | 3.3 |
| 2021-06-11 | CVE-2021-25398 | Unspecified vulnerability in Samsung Bixby Voice 3.0.52.14 Intent redirection vulnerability in Bixby Voice prior to version 3.1.12 allows attacker to access contacts. | 3.3 |
| 2021-04-09 | CVE-2021-25379 | Unspecified vulnerability in Samsung Gallery Intent redirection vulnerability in Gallery prior to version 5.4.16.1 allows attacker to execute privileged action. | 3.3 |
| 2021-03-25 | CVE-2021-25350 | Information Exposure Through Log Files vulnerability in Samsung Account 10.7.07/10.8.0.4 Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically proximate attackers to access user information via log. | 3.9 |
| 2021-03-25 | CVE-2021-25351 | Unspecified vulnerability in Samsung Account 10.7.07/10.8.0.4 Improper Access Control in EmailValidationView in Samsung Account prior to version 10.7.0.7 and 12.1.1.3 allows physically proximate attackers to log out user account on device without user password. low complexity samsung | 2.4 |
| 2021-03-25 | CVE-2021-25366 | Unspecified vulnerability in Samsung Internet 13.2.1.46 Improper access control in Samsung Internet prior to version 13.2.1.70 allows physically proximate attackers to bypass the secret mode's authentication. low complexity samsung | 2.9 |
| 2021-03-04 | CVE-2021-25341 | Improper Authentication vulnerability in Samsung S Assistant Calling of non-existent provider in S Assistant prior to version 6.5.01.22 allows unauthorized actions including denial of service attack by hijacking the provider. | 3.3 |
| 2021-03-04 | CVE-2021-25342 | Improper Authentication vulnerability in Samsung Members 2.4.81.13/2.4.85.11 Calling of non-existent provider in SMP sdk prior to version 3.0.9 allows unauthorized actions including denial of service attack by hijacking the provider. | 3.3 |