Vulnerabilities > Samsung > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-05 | CVE-2021-25504 | Unspecified vulnerability in Samsung Group Sharing Intent redirection vulnerability in Group Sharing prior to 10.8.03.2 allows attacker to access contact information. | 4.0 |
| 2021-11-05 | CVE-2021-25506 | Incorrect Authorization vulnerability in Samsung Health Non-existent provider in Samsung Health prior to 6.19.1.0001 allows attacker to access it via malicious content provider or lead to denial of service. | 5.5 |
| 2021-11-05 | CVE-2021-25507 | Unspecified vulnerability in Samsung Flow Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure Folder without authorization. low complexity samsung | 5.7 |
| 2021-10-06 | CVE-2021-25489 | Use of Externally-Controlled Format String vulnerability in Samsung Android Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic. | 5.5 |
| 2021-10-06 | CVE-2021-25499 | Unspecified vulnerability in Samsung Galaxy Store Intent redirection vulnerability in SamsungAccountSDKSigninActivity of Galaxy Store prior to version 4.5.32.4 allows attacker to access content provider of Galaxy Store. | 5.5 |
| 2021-09-09 | CVE-2021-25464 | Unspecified vulnerability in Samsung Capture An improper file management vulnerability in SamsungCapture prior to version 4.8.02 allows sensitive information leak. | 5.5 |
| 2021-09-09 | CVE-2021-25466 | Improper Authentication vulnerability in Samsung Internet Improper scheme check vulnerability in Samsung Internet prior to version 15.0.2.47 allows attackers to perform Man-in-the-middle attack and obtain Samsung Account token. | 5.9 |
| 2021-08-05 | CVE-2021-25445 | Improper Authentication vulnerability in Samsung Internet Unprotected component vulnerability in Samsung Internet prior to version 14.2 allows untrusted application to access internal files in Samsung Internet. | 5.3 |
| 2021-08-05 | CVE-2021-25446 | Unspecified vulnerability in Samsung Smartthings Firmware 1.7.64.21 Improper access control vulnerability in SmartThings prior to version 1.7.67.25 allows untrusted applications to cause arbitrary webpage loading in webview. | 5.3 |
| 2021-08-05 | CVE-2021-25447 | Unspecified vulnerability in Samsung Smartthings Firmware 1.7.64.21 Improper access control vulnerability in SmartThings prior to version 1.7.67.25 allows untrusted applications to cause local file inclusion in webview. | 5.3 |