samsung

1,528 tracked vulnerabilities.

CVE-2022-40758 HIGH
Samsung mTower <= 0.3.0 - Denial of Service via TEE_CipherUpdate Excessive Size Value
Sep 16, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-40757 HIGH
Samsung mTower <= 0.3.0 - Denial of Service via TEE_MACComputeFinal Excessive Message Length
Sep 16, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-39846 MEDIUM
Samsung Smart Switch PC < 4.3.22083_3 - Uncontrolled Search Path Element
Sep 09, 2022
CVSS 6.2
EPSS 0.00
CVE-2022-39845 MEDIUM
Samsung Kies <2.6.4.22074 - Privilege Escalation
Sep 09, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-39844 MEDIUM
Smart Switch PC <4.3.22083 - Privilege Escalation
Sep 09, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-36878 LOW
Samsung Find My Mobile < 7.2.25.14 - Exposure of Sensitive Information via Log
Sep 09, 2022
CVSS 3.3
EPSS 0.00
CVE-2022-36877 LOW
Samsung Members < 4.3.00.11 (Global) and < 14.0.02.4 (China) - Sensitive Information Exposure in FaqSymptomCardViewModel
Sep 09, 2022
CVSS 2.8
EPSS 0.00
CVE-2022-36876 LOW
Samsung Pass < 4.0.04.10 - Unauthenticated Account List Access via UPI Payment
Sep 09, 2022
CVSS 1.8
EPSS 0.00
CVE-2022-36875 MEDIUM
Samsung Galaxy Watch Plugin < 2.2.11.22081151 - Improper Access Control via SaWebViewRelayActivity Intent Broadcast
Sep 09, 2022
CVSS 6.6
EPSS 0.00
CVE-2022-36874 MEDIUM
Samsung Galaxy Watch Plugin < 2.2.11.22040751 - Unauthorized Device Information Disclosure
Sep 09, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-36873 MEDIUM
Samsung Galaxy Watch Plugin < 2.2.11.22081151 - MAC Address Leak via GalaxyStoreBridgePageLinker Intent
Sep 09, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-36872 MEDIUM
Samsung Pay < 5.0.63 (KR) / < 5.1.47 (Global) - Unauthenticated Pending Intent Hijacking via Implicit Intent
Sep 09, 2022
CVSS 5.0
EPSS 0.00
CVE-2022-36871 MEDIUM
Samsung Pay < 5.1.47 (Global) < 5.0.63 (KR) - Unauthenticated Pending Intent Hijacking via Implicit Intent
Sep 09, 2022
CVSS 5.0
EPSS 0.00
CVE-2022-36870 MEDIUM
Samsung Pay < 5.1.47 (Global) / < 5.0.63 (KR) - Unauthenticated Pending Intent Hijacking via Implicit Intent
Sep 09, 2022
CVSS 5.0
EPSS 0.00
CVE-2022-36869 MEDIUM
Samsung Contacts Provider < 12.7.59 - Improper Access Control in ContactsDumpActivity
Sep 09, 2022
CVSS 6.6
EPSS 0.00
CVE-2022-36867 MEDIUM
Samsung Editor Lite < 4.0.40.14 - Improper Access Control
Sep 09, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-36866 MEDIUM
Samsung Group Sharing < 13.0.6.15 - Improper Access Control in Broadcaster
Sep 09, 2022
CVSS 4.0
EPSS 0.00
CVE-2022-36865 MEDIUM
Samsung Group Sharing < 13.0.6.15 - Improper Access Control
Sep 09, 2022
CVSS 4.0
EPSS 0.00
CVE-2022-36864 MEDIUM
Samsung Email < 6.1.70.20 - Improper Access Control and Intent Redirection
Sep 09, 2022
CVSS 4.0
EPSS 0.00
CVE-2022-36859 MEDIUM
Samsung SmartTagPlugin < 1.2.21-6 - Cross-Site Scripting
Sep 09, 2022
CVSS 5.7
EPSS 0.00
CVE-2022-36857 LOW
Google Android < 3.0.23.43 - Improper Authorization
Sep 09, 2022
CVSS 1.9
EPSS 0.00
CVE-2022-36851 LOW
Samsung Pass < 4.0.03.1 - Unauthenticated Data Exposure via Unlocked Device State
Sep 09, 2022
CVSS 3.9
EPSS 0.00
CVE-2022-40281 HIGH
Samsung TizenRT through 3.0_GBM - Information Disclosure via Missing X509_free in cyassl_connect_step2
Sep 08, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-40280 HIGH
Samsung TizenRT through 3.0_GBM - Denial of Service via Missing sqlite3_close in createDB
Sep 08, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-39830 HIGH
Samsung mTower <= 0.3.0 - Denial of Service via EC_KEY_set_public_key_affine_coordinates
Sep 05, 2022
CVSS 7.5
EPSS 0.01