Vulnerabilities > Samsung > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-05 | CVE-2021-25448 | Unspecified vulnerability in Samsung Smart Touch Call Improper access control vulnerability in Smart Touch Call prior to version 1.0.0.5 allows arbitrary webpage loading in webview. | 5.3 |
| 2021-07-08 | CVE-2021-25431 | Unspecified vulnerability in Samsung Cameralyzer 3.2.0/3.3.0/3.4.0 Improper access control vulnerability in Cameralyzer prior to versions 3.2.1041 in 3.2.x, 3.3.1040 in 3.3.x, and 3.4.4210 in 3.4.x allows untrusted applications to access some functions of Cameralyzer. | 5.5 |
| 2021-06-11 | CVE-2021-25394 | Use After Free vulnerability in Samsung Android A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows arbitrary write given a radio privilege is compromised. | 6.4 |
| 2021-06-11 | CVE-2021-25395 | Race Condition vulnerability in Samsung Android A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised. | 6.4 |
| 2021-06-11 | CVE-2021-25405 | Unspecified vulnerability in Samsung Notes 2.0.02.31/4.2.00.22 An improper access control vulnerability in ScreenOffActivity in Samsung Notes prior to version 4.2.04.27 allows untrusted applications to access local files. | 5.5 |
| 2021-06-11 | CVE-2021-25406 | Incorrect Authorization vulnerability in Samsung Gear S Information exposure vulnerability in Gear S Plugin prior to version 2.2.05.20122441 allows unstrusted applications to access connected BT device information. | 6.5 |
| 2021-06-11 | CVE-2021-25419 | Unspecified vulnerability in Samsung Internet 13.2.1.46/13.2.1.70/14.0.1.20 Non-compliance of recommended secure coding scheme in Samsung Internet prior to version 14.0.1.62 allows attackers to display fake URL in address bar via phising URL link. | 6.5 |
| 2021-06-11 | CVE-2021-25420 | Information Exposure Through Log Files vulnerability in Samsung Galaxy Watch Plugin Improper log management vulnerability in Galaxy Watch PlugIn prior to version 2.2.05.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | 5.5 |
| 2021-06-11 | CVE-2021-25421 | Information Exposure Through Log Files vulnerability in Samsung Galaxy Watch 3 Plugin 2.2.03.22012751 Improper log management vulnerability in Galaxy Watch3 PlugIn prior to version 2.2.09.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | 5.5 |
| 2021-06-11 | CVE-2021-25422 | Information Exposure Through Log Files vulnerability in Samsung Watch Active Plugin Improper log management vulnerability in Watch Active PlugIn prior to version 2.2.07.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | 5.5 |