Vulnerabilities > Samsung > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-07 | CVE-2023-42541 | Incorrect Authorization vulnerability in Samsung Push Service Improper authorization in PushClientProvider of Samsung Push Service prior to version 3.4.10 allows attacker to access unique id. | 5.3 |
| 2023-11-07 | CVE-2023-42544 | Unspecified vulnerability in Samsung Quick Share 13.1.2.4/3.5.14.18/3.5.16.20 Improper access control vulnerability in Quick Share prior to 13.5.52.0 allows local attacker to access local files. | 5.5 |
| 2023-11-07 | CVE-2023-42546 | Exposure of Resource to Wrong Sphere vulnerability in Samsung Account Use of implicit intent for sensitive communication vulnerability in startAgreeToDisclaimerActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | 6.5 |
| 2023-11-07 | CVE-2023-42547 | Exposure of Resource to Wrong Sphere vulnerability in Samsung Account Use of implicit intent for sensitive communication vulnerability in startEmailValidationActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | 6.5 |
| 2023-11-07 | CVE-2023-42548 | Unspecified vulnerability in Samsung Account Use of implicit intent for sensitive communication vulnerability in startMandatoryCheckActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | 6.5 |
| 2023-11-07 | CVE-2023-42549 | Exposure of Resource to Wrong Sphere vulnerability in Samsung Account Use of implicit intent for sensitive communication vulnerability in startNameValidationActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | 6.5 |
| 2023-11-07 | CVE-2023-42550 | Unspecified vulnerability in Samsung Account Use of implicit intent for sensitive communication vulnerability in startSignIn in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | 6.5 |
| 2023-11-07 | CVE-2023-42551 | Exposure of Resource to Wrong Sphere vulnerability in Samsung Account Use of implicit intent for sensitive communication vulnerability in startTncActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | 6.5 |
| 2023-11-07 | CVE-2023-42553 | Unspecified vulnerability in Samsung Email 6.1.82.0 Improper authorization verification vulnerability in Samsung Email prior to version 6.1.90.4 allows attackers to read sandbox data of email. | 5.3 |
| 2023-11-07 | CVE-2023-42554 | Improper Authentication vulnerability in Samsung Pass 4.0.05.1/4.2.03.1 Improper Authentication vulnerabiity in Samsung Pass prior to version 4.3.00.17 allows physical attackers to bypass authentication. | 6.8 |