Samsung Camera vulnerabilities

CVE-2023-21482 [MEDIUM] CVE-2023-21482: Missing authorization vulnerability in Camera prior to versions 11.1.02.18 in Android 11, 12.1.03.8 Missing authorization vulnerability in Camera prior to versions 11.1.02.18 in Android 11, 12.1.03.8 in Android 12 and 13.1.01.4 in Android 13 allows physical attackers to install package through Galaxy store before completion of Setup wizard.

CVE-2024-20854 [MEDIUM] CVE-2024-20854: Improper handling of insufficient privileges vulnerability in Samsung Camera prior to versions 12.1. Improper handling of insufficient privileges vulnerability in Samsung Camera prior to versions 12.1.0.31 in Android 12, 13.1.02.07 in Android 13, and 14.0.01.06 in Android 14 allows local attackers to access image data.

CVE-2023-30730 [LOW] CVE-2023-30730: Implicit intent hijacking vulnerability in Camera prior to versions 11.0.16.43 in Android 11, 12.1.0 Implicit intent hijacking vulnerability in Camera prior to versions 11.0.16.43 in Android 11, 12.1.00.30, 12.0.07.53, 12.1.03.10 in Android 12, and 13.0.01.43, 13.1.00.83 in Android 13 allows local attacker to access specific file.

CVE-2022-33712 [MEDIUM] CWE-285 CVE-2022-33712: Intent redirection vulnerability using implict intent in Camera prior to versions 12.0.01.64 ,12.0.3 Intent redirection vulnerability using implict intent in Camera prior to versions 12.0.01.64 ,12.0.3.23, 12.0.0.98, 12.0.6.11, 12.0.3.19 in Android S(12) allows attacker to get sensitive information.

CVE-2022-23998 [MEDIUM] CWE-20 CVE-2022-23998: Improper access control vulnerability in Camera prior to versions 11.1.02.16 in Android R(11), 10.5. Improper access control vulnerability in Camera prior to versions 11.1.02.16 in Android R(11), 10.5.03.77 in Android Q(10) and 9.0.6.68 in Android P(9) allows untrusted applications to take a picture in screenlock status.