Vulnerabilities > Samsung > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-07-06 CVE-2023-30661 Unspecified vulnerability in Samsung Android 12.0/13.0
Exposure of Sensitive Information vulnerability in getChipInfos in UwbAospAdapterService prior to SMR Jul-2023 Release 1 allows local attackers to access the UWB chipset Identifier.
local
low complexity
samsung
5.5
2023-07-06 CVE-2023-30662 Unspecified vulnerability in Samsung Android 12.0/13.0
Exposure of Sensitive Information vulnerability in getChipIds in UwbAospAdapterService prior to SMR Jul-2023 Release 1 allows local attackers to access the UWB chipset Identifier.
local
low complexity
samsung
5.5
2023-07-06 CVE-2023-30665 Out-of-bounds Read vulnerability in Samsung Android 11.0/12.0/13.0
Improper input validation vulnerability in OnOemServiceMode in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds read.
local
low complexity
samsung CWE-125
4.4
2023-07-06 CVE-2023-30671 Unspecified vulnerability in Samsung Android 12.0/13.0
Logic error in package installation via adb command prior to SMR Jul-2023 Release 1 allows local attackers to downgrade installed application.
local
low complexity
samsung
5.5
2023-07-06 CVE-2023-30672 Unspecified vulnerability in Samsung Smart Switch PC 4.2.220224/4.3.22083/4.3.220833
Improper privilege management vulnerability in Samsung Smart Switch for Windows Installer prior to version 4.3.23043_3 allows attackers to cause permanent DoS via directory junction.
local
low complexity
samsung
5.5
2023-07-06 CVE-2023-30673 Improper Validation of Integrity Check Value vulnerability in Samsung Smart Switch PC 4.2.220224/4.3.22083/4.3.220833
Improper validation of integrity check vulnerability in Smart Switch PC prior to version 4.3.23052_1 allows local attackers to delete arbitrary directory using directory junction.
local
low complexity
samsung CWE-354
5.5
2023-07-06 CVE-2023-30674 Unspecified vulnerability in Samsung Internet
Improper configuration in Samsung Internet prior to version 21.0.0.41 allows attacker to bypass SameSite Cookie.
network
low complexity
samsung
6.5
2023-07-06 CVE-2023-30675 Improper Authentication vulnerability in Samsung Pass 4.0.05.1
Improper authentication in Samsung Pass prior to version 4.2.03.1 allows local attacker to access stored account information when Samsung Wallet is not installed.
local
low complexity
samsung CWE-287
5.5
2023-07-06 CVE-2023-30676 Unspecified vulnerability in Samsung Pass 4.0.05.1
Improper access control vulnerability in Samsung Pass prior to version 4.2.03.1 allows physical attackers to access data of Samsung Pass.
low complexity
samsung
4.6
2023-07-06 CVE-2023-30677 Unspecified vulnerability in Samsung Pass 4.0.05.1
Improper access control vulnerability in Samsung Pass prior to version 4.2.03.1 allows physical attackers to access data of Samsung Pass on a certain state of an unlocked device.
low complexity
samsung
4.6