Vulnerabilities > Samsung > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-11 | CVE-2021-25423 | Information Exposure Through Log Files vulnerability in Samsung Watch Active2 Plugin Improper log management vulnerability in Watch Active2 PlugIn prior to 2.2.08.21033151 version allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone via log. | 5.5 |
| 2021-06-11 | CVE-2021-25425 | Improper Check for Unusual or Exceptional Conditions vulnerability in Samsung Health 6.16 Improper check vulnerability in Samsung Health prior to version 6.17 allows attacker to read internal cache data via exported component. | 5.3 |
| 2021-05-11 | CVE-2020-26144 | Improper Input Validation vulnerability in multiple products An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. | 6.5 |
| 2021-05-11 | CVE-2020-26145 | Improper Input Validation vulnerability in multiple products An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. | 6.5 |
| 2021-05-11 | CVE-2020-26146 | Improper Input Validation vulnerability in multiple products An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. | 5.3 |
| 2021-04-09 | CVE-2021-25378 | Unspecified vulnerability in Samsung Smartthings Improper access control of certain port in SmartThings prior to version 1.7.63.6 allows remote temporary denial of service. | 5.3 |
| 2021-04-09 | CVE-2021-25376 | Improper Synchronization vulnerability in Samsung Email An improper synchronization logic in Samsung Email prior to version 6.1.41.0 can leak messages in certain mailbox in plain text when STARTTLS negotiation is failed. | 5.3 |
| 2021-04-09 | CVE-2021-25375 | Use of Insufficiently Random Values vulnerability in Samsung Email Using predictable index for attachments in Samsung Email prior to version 6.1.41.0 allows remote attackers to get attachments of another emails when users open the malicious attachment. | 6.5 |
| 2021-03-26 | CVE-2021-25372 | Out-of-bounds Write vulnerability in Samsung Android 10.0/11.0 An improper boundary check in DSP driver prior to SMR Mar-2021 Release 1 allows out of bounds memory access. | 6.7 |
| 2021-03-26 | CVE-2021-25371 | Unspecified vulnerability in Samsung Android 10.0/11.0 A vulnerability in DSP driver prior to SMR Mar-2021 Release 1 allows attackers load arbitrary ELF libraries inside DSP. | 6.7 |