Vulnerabilities > Samsung > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-08 | CVE-2021-25526 | Unspecified vulnerability in Samsung Blockchain Wallet Intent redirection vulnerability in Samsung Blockchain Wallet prior to version 1.3.02.8 allows attacker to execute privileged action. | 5.5 |
| 2021-11-05 | CVE-2021-25504 | Unspecified vulnerability in Samsung Group Sharing Intent redirection vulnerability in Group Sharing prior to 10.8.03.2 allows attacker to access contact information. | 4.0 |
| 2021-11-05 | CVE-2021-25506 | Incorrect Authorization vulnerability in Samsung Health Non-existent provider in Samsung Health prior to 6.19.1.0001 allows attacker to access it via malicious content provider or lead to denial of service. | 5.5 |
| 2021-11-05 | CVE-2021-25507 | Unspecified vulnerability in Samsung Flow Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure Folder without authorization. low complexity samsung | 5.7 |
| 2021-10-06 | CVE-2021-25499 | Unspecified vulnerability in Samsung Galaxy Store Intent redirection vulnerability in SamsungAccountSDKSigninActivity of Galaxy Store prior to version 4.5.32.4 allows attacker to access content provider of Galaxy Store. | 5.5 |
| 2021-09-09 | CVE-2021-25464 | Unspecified vulnerability in Samsung Capture An improper file management vulnerability in SamsungCapture prior to version 4.8.02 allows sensitive information leak. | 5.5 |
| 2021-09-09 | CVE-2021-25466 | Improper Authentication vulnerability in Samsung Internet Improper scheme check vulnerability in Samsung Internet prior to version 15.0.2.47 allows attackers to perform Man-in-the-middle attack and obtain Samsung Account token. | 5.9 |
| 2021-08-05 | CVE-2021-25445 | Improper Authentication vulnerability in Samsung Internet Unprotected component vulnerability in Samsung Internet prior to version 14.2 allows untrusted application to access internal files in Samsung Internet. | 5.3 |
| 2021-08-05 | CVE-2021-25446 | Unspecified vulnerability in Samsung Smartthings Firmware 1.7.64.21 Improper access control vulnerability in SmartThings prior to version 1.7.67.25 allows untrusted applications to cause arbitrary webpage loading in webview. | 5.3 |
| 2021-08-05 | CVE-2021-25447 | Unspecified vulnerability in Samsung Smartthings Firmware 1.7.64.21 Improper access control vulnerability in SmartThings prior to version 1.7.67.25 allows untrusted applications to cause local file inclusion in webview. | 5.3 |