Vulnerabilities > Samsung > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-05 | CVE-2022-36831 | Path Traversal vulnerability in Samsung Notes Path traversal vulnerability in UriFileUtils of Samsung Notes prior to version 4.3.14.39 allows attacker to access some file as Samsung Notes permission. | 5.5 |
| 2022-08-05 | CVE-2022-36836 | Missing Authorization vulnerability in Samsung Charm Firmware Unprotected provider vulnerability in Charm by Samsung prior to version 1.2.3 allows attackers to read connection state without permission. | 5.5 |
| 2022-08-05 | CVE-2022-36837 | Unspecified vulnerability in Samsung Email Intent redirection vulnerability using implicit intent in Samsung email prior to version 6.1.70.20 allows attacker to get sensitive information. | 5.5 |
| 2022-08-05 | CVE-2022-36838 | Unspecified vulnerability in Samsung Galaxy Wearable Implicit Intent hijacking vulnerability in Galaxy Wearable prior to version 2.2.50 allows attacker to get sensitive information. low complexity samsung | 4.6 |
| 2022-08-05 | CVE-2022-36839 | SQL Injection vulnerability in Samsung Checkout SQL injection vulnerability via IAPService in Samsung Checkout prior to version 5.0.53.1 allows attackers to access IAP information. | 5.5 |
| 2022-07-12 | CVE-2022-33707 | Use of Insufficiently Random Values vulnerability in Samsung Find MY Mobile Improper identifier creation logic in Find My Mobile prior to version 7.2.24.12 allows attacker to identify the device. | 5.0 |
| 2022-07-12 | CVE-2022-33712 | Open Redirect vulnerability in Samsung Camera 10.5.03.77/11.1.02.16/9.0.6.68 Intent redirection vulnerability using implict intent in Camera prior to versions 12.0.01.64 ,12.0.3.23, 12.0.0.98, 12.0.6.11, 12.0.3.19 in Android S(12) allows attacker to get sensitive information. | 5.0 |
| 2022-07-12 | CVE-2022-33713 | Unspecified vulnerability in Samsung Cloud 4.7.0.3/5.1.0.8 Implicit Intent hijacking vulnerability in Samsung Cloud prior to version 5.2.0 allows attacker to get sensitive information. | 5.0 |
| 2022-06-07 | CVE-2022-30730 | Unspecified vulnerability in Samsung Pass Improper authorization in Samsung Pass prior to 1.0.00.33 allows physical attackers to acess account list without authentication. low complexity samsung | 4.6 |
| 2022-06-07 | CVE-2022-30731 | Unspecified vulnerability in Samsung MY Files Improper access control vulnerability in My Files prior to version 13.1.00.193 allows attackers to access arbitrary private files in My Files application. | 5.5 |