Samsung Group Sharing vulnerabilities

CVE-2024-34659 [HIGH] CVE-2024-34659: Exposure of sensitive information in GroupSharing prior to version 13.6.13.3 allows remote attackers Exposure of sensitive information in GroupSharing prior to version 13.6.13.3 allows remote attackers can force the victim to join the group.

CVE-2022-39877 [MEDIUM] CWE-284 CVE-2022-39877: Improper access control vulnerability in ProfileSharingAccount in Group Sharing prior to versions 13 Improper access control vulnerability in ProfileSharingAccount in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below allows attackers to identify the device.

CVE-2022-36866 [MEDIUM] CWE-284 CVE-2022-36866: Improper access control vulnerability in Broadcaster in Group Sharing prior to versions 13.0.6.15 in Improper access control vulnerability in Broadcaster in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below allows attackers to identify the device.

CVE-2022-36865 [MEDIUM] CWE-284 CVE-2022-36865: Improper access control in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Improper access control in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below allows attackers to access device information.

CVE-2021-25504 [MEDIUM] CWE-20 CVE-2021-25504: Intent redirection vulnerability in Group Sharing prior to 10.8.03.2 allows attacker to access conta Intent redirection vulnerability in Group Sharing prior to 10.8.03.2 allows attacker to access contact information.