Vulnerabilities > Samsung > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-16 | CVE-2023-21452 | Unspecified vulnerability in Samsung Android 11.0/12.0/13.0 Improper usage of implicit intent in Bluetooth prior to SMR Mar-2023 Release 1 allows attacker to get MAC address of connected device. | 3.3 |
| 2023-02-09 | CVE-2023-21450 | Missing Authorization vulnerability in Samsung ONE Hand Operation + Missing Authorization vulnerability in One Hand Operation + prior to version 6.1.21 allows multi-users to access owner's widget without authorization via gesture setting. | 2.1 |
| 2023-02-09 | CVE-2023-21448 | Path Traversal vulnerability in Samsung Cloud 4.7.0.3/5.1.0.8/5.2.00.7 Path traversal vulnerability in Samsung Cloud prior to version 5.3.0.32 allows attacker to access specific png file. | 3.3 |
| 2023-02-09 | CVE-2023-21447 | Exposure of Resource to Wrong Sphere vulnerability in Samsung Cloud 4.7.0.3/5.1.0.8/5.2.00.7 Improper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local attackers to access information with Samsung Cloud's privilege via implicit intent. | 3.3 |
| 2023-02-09 | CVE-2023-21438 | Exposure of Resource to Wrong Sphere vulnerability in Samsung Android 11.0/12.0 Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access App preview protected by Secure Folder. | 2.4 |
| 2023-02-09 | CVE-2023-21436 | Unspecified vulnerability in Samsung Android 10.0/11.0 Improper usage of implicit intent in Contacts prior to SMR Feb-2023 Release 1 allows attacker to get account ID. | 3.3 |
| 2023-02-09 | CVE-2023-21431 | Improper Input Validation vulnerability in Samsung Bixby Vision 3.7.50.6 Improper input validation in Bixby Vision prior to version 3.7.70.17 allows attacker to access data of Bixby Vision. | 3.3 |
| 2023-02-09 | CVE-2023-21429 | Unspecified vulnerability in Samsung Android 10.0/11.0 Improper usage of implict intent in ePDG prior to SMR JAN-2023 Release 1 allows attacker to access SSID. | 3.3 |
| 2023-02-09 | CVE-2023-21428 | Improper Input Validation vulnerability in Samsung Android 11.0/12.0 Improper input validation vulnerability in TelephonyUI prior to SMR Jan-2023 Release 1 allows attackers to configure Preferred Call. | 3.3 |
| 2023-02-09 | CVE-2023-21424 | Incorrect Authorization vulnerability in Samsung Android 11.0/12.0 Improper Handling of Insufficient Permissions or Privileges vulnerability in SemChameleonHelper prior to SMR Jan-2023 Release 1 allows attacker to modify network related values, network code, carrier id and operator brand. | 3.3 |