Vulnerabilities > Samsung > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-04 | CVE-2021-25343 | Improper Authentication vulnerability in Samsung Members 2.4.81.13/2.4.85.11 Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 (in Android O(8.1) and below) and 3.8.00.13 (in Android P(9.0) and above) allows unauthorized actions including denial of service attack by hijacking the provider. | 3.3 |
| 2021-03-04 | CVE-2021-25348 | Unspecified vulnerability in Samsung Internet Improper permission grant check in Samsung Internet prior to version 13.0.1.60 allows access to files in internal storage without authorized STORAGE permission. low complexity samsung | 2.4 |
| 2021-03-04 | CVE-2021-25331 | Information Exposure vulnerability in Samsung PAY Mini Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen in specific condition. | 2.4 |
| 2021-03-04 | CVE-2021-25332 | Information Exposure vulnerability in Samsung PAY Mini Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to contacts information over the lockscreen in specific condition. | 2.4 |
| 2021-03-04 | CVE-2021-25333 | Information Exposure vulnerability in Samsung PAY Mini Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen via scanning specific QR code. | 2.4 |
| 2021-03-04 | CVE-2021-25335 | Improper lockscreen status check in cocktailbar service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows unauthenticated users to access hidden notification contents over the lockscreen in specific condition. | 2.5 |
| 2017-04-13 | CVE-2016-2565 | Information Exposure vulnerability in Samsung Galaxy S6 Firmware G920Fxxu2Coh2 Samsung SecEmailSync on SM-G920F build G920FXXU2COH2 (Galaxy S6) devices allows attackers to read sent e-mail messages, aka SVE-2015-5081. | 3.3 |
| 2017-04-13 | CVE-2016-2567 | Improper Input Validation vulnerability in Samsung Galaxy Note 3 Firmware and Galaxy S6 Firmware secfilter in the Samsung kernel for Android on SM-N9005 build N9005XXUGBOB6 (Note 3) and SM-G920F build G920FXXU2COH2 (Galaxy S6) devices allows attackers to bypass URL filtering by inserting an "exceptional URL" in the query string, as demonstrated by the http://should-have-been-filtered.example.com/?http://google.com URL. | 3.3 |