Vulnerabilities > Samsung > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-05 | CVE-2021-25448 | Unspecified vulnerability in Samsung Smart Touch Call Improper access control vulnerability in Smart Touch Call prior to version 1.0.0.5 allows arbitrary webpage loading in webview. | 5.3 |
| 2021-07-08 | CVE-2021-25431 | Unspecified vulnerability in Samsung Cameralyzer 3.2.0/3.3.0/3.4.0 Improper access control vulnerability in Cameralyzer prior to versions 3.2.1041 in 3.2.x, 3.3.1040 in 3.3.x, and 3.4.4210 in 3.4.x allows untrusted applications to access some functions of Cameralyzer. | 5.5 |
| 2021-06-11 | CVE-2021-25405 | Unspecified vulnerability in Samsung Notes 2.0.02.31/4.2.00.22 An improper access control vulnerability in ScreenOffActivity in Samsung Notes prior to version 4.2.04.27 allows untrusted applications to access local files. | 5.5 |
| 2021-06-11 | CVE-2021-25406 | Incorrect Authorization vulnerability in Samsung Gear S Information exposure vulnerability in Gear S Plugin prior to version 2.2.05.20122441 allows unstrusted applications to access connected BT device information. | 6.5 |
| 2021-06-11 | CVE-2021-25419 | Unspecified vulnerability in Samsung Internet 13.2.1.46/13.2.1.70/14.0.1.20 Non-compliance of recommended secure coding scheme in Samsung Internet prior to version 14.0.1.62 allows attackers to display fake URL in address bar via phising URL link. | 6.5 |
| 2021-06-11 | CVE-2021-25420 | Information Exposure Through Log Files vulnerability in Samsung Galaxy Watch Plugin Improper log management vulnerability in Galaxy Watch PlugIn prior to version 2.2.05.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | 5.5 |
| 2021-06-11 | CVE-2021-25421 | Information Exposure Through Log Files vulnerability in Samsung Galaxy Watch 3 Plugin 2.2.03.22012751 Improper log management vulnerability in Galaxy Watch3 PlugIn prior to version 2.2.09.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | 5.5 |
| 2021-06-11 | CVE-2021-25422 | Information Exposure Through Log Files vulnerability in Samsung Watch Active Plugin Improper log management vulnerability in Watch Active PlugIn prior to version 2.2.07.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | 5.5 |
| 2021-06-11 | CVE-2021-25423 | Information Exposure Through Log Files vulnerability in Samsung Watch Active2 Plugin Improper log management vulnerability in Watch Active2 PlugIn prior to 2.2.08.21033151 version allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone via log. | 5.5 |
| 2021-06-11 | CVE-2021-25425 | Improper Check for Unusual or Exceptional Conditions vulnerability in Samsung Health 6.16 Improper check vulnerability in Samsung Health prior to version 6.17 allows attacker to read internal cache data via exported component. | 5.3 |