Vulnerabilities > Samsung > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-07 | CVE-2022-30736 | Improper Privilege Management vulnerability in Samsung Account Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission. | 5.3 |
| 2022-06-07 | CVE-2022-30737 | Unspecified vulnerability in Samsung Account Implicit Intent hijacking vulnerability in Samsung Account prior to version 13.2.00.6 allows attackers to get email ID. | 5.3 |
| 2022-06-07 | CVE-2022-30738 | Improper Check for Unusual or Exceptional Conditions vulnerability in Samsung Internet Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address bar via executing script. | 4.3 |
| 2022-06-07 | CVE-2022-30739 | Improper Privilege Management vulnerability in Samsung Account Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get an user email or phone number with a normal level permission. | 4.3 |
| 2022-06-07 | CVE-2022-30740 | Insecure Storage of Sensitive Information vulnerability in Samsung Internet Improper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69 allows physical attackers to guess stored credit card numbers. | 4.3 |
| 2022-06-07 | CVE-2022-30743 | Improper Privilege Management vulnerability in Samsung Account Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission. | 5.3 |
| 2022-06-07 | CVE-2022-30745 | Unspecified vulnerability in Samsung Quick Share 3.5.14.18/3.5.16.20 Improper access control vulnerability in Quick Share prior to version 13.1.2.4 allows attacker to access internal files in Quick Share. | 5.5 |
| 2022-06-07 | CVE-2022-30747 | Incorrect Default Permissions vulnerability in Samsung Smartthings 1.7.73.22/1.7.85.12 PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit Intent. | 5.5 |
| 2022-06-07 | CVE-2022-30748 | Unspecified vulnerability in Samsung Members Unprotected dynamic receiver in Samsung Members prior to version 4.2.005 allows attacker to launch arbitrary activity. | 5.5 |
| 2022-05-03 | CVE-2022-28789 | Missing Authorization vulnerability in Samsung Voice Note Unprotected activities in Voice Note prior to version 21.3.51.11 allows attackers to record voice without user interaction. | 5.5 |