cbcvebase.

Samsung Mobile Devices vulnerabilities

374 known vulnerabilities affecting samsung_mobile/samsung_mobile_devices.

Total CVEs
374
CISA KEV
11
actively exploited
Public exploits
0
Exploited in wild
11
Severity breakdown
CRITICAL37HIGH100MEDIUM142LOW95

Vulnerabilities

Page 19 of 19
CVE-2022-39856P4LOWCVSS 3.3≥ S(12), < SMR Oct-2022 Release 12022-10-07
CVE-2022-39856 [LOW] CWE-200 CVE-2022-39856: Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allo Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information.
nvd
CVE-2022-39851P4LOWCVSS 3.3≥ Q(10), R(11), S(12), < SMR Oct-2022 Release 12022-10-07
CVE-2022-39851 [LOW] CWE-284 CVE-2022-39851: Improper access control vulnerability in CocktailBarService prior to SMR Oct-2022 Release 1 allows l Improper access control vulnerability in CocktailBarService prior to SMR Oct-2022 Release 1 allows local attacker to bind service that require BIND_REMOTEVIEWS permission.
nvd
CVE-2022-33724P4LOWCVSS 3.3≥ Q(10), R(11), S(12), < SMR Aug-2022 Release 12022-08-05
CVE-2022-33724 [LOW] CWE-200 CVE-2022-33724: Exposure of Sensitive Information in Samsung Dialer application?prior to SMR Aug-2022 Release 1 allo Exposure of Sensitive Information in Samsung Dialer application?prior to SMR Aug-2022 Release 1 allows local attackers to access ICCID via log.
nvd
CVE-2021-25409P4LOWCVSS 2.4≥ Q(10.0), < SMA JUN-2021 Release 12021-06-11
CVE-2021-25409 [LOW] CWE-703 CVE-2021-25409: Improper access in Notification setting prior to SMR JUN-2021 Release 1 allows physically proximate Improper access in Notification setting prior to SMR JUN-2021 Release 1 allows physically proximate attackers to set arbitrary notification via physically configuring device.
nvd
CVE-2022-22267P4LOWCVSS 3.3≥ P(9.0), Q(10.0), R(11.0), S(12.0), < SMR Jan-2022 Release 12022-01-10
CVE-2022-22267 [LOW] CWE-285 CVE-2022-22267: Implicit Intent hijacking vulnerability in ActivityMetricsLogger prior to SMR Jan-2022 Release 1 all Implicit Intent hijacking vulnerability in ActivityMetricsLogger prior to SMR Jan-2022 Release 1 allows attackers to get running application information.
nvd
CVE-2023-21454P4LOWCVSS 2.4≥ Android 13, < SMR Mar-2023 Release 12023-03-16
CVE-2023-21454 [LOW] CWE-285 CVE-2023-21454: Improper authorization in Samsung Keyboard prior to SMR Mar-2023 Release 1 allows physical attacker Improper authorization in Samsung Keyboard prior to SMR Mar-2023 Release 1 allows physical attacker to access users text history on the lockscreen.
nvd
CVE-2022-33720P4LOWCVSS 2.4≥ Q(10), R(11), < SMR Aug-2022 Release 12022-08-05
CVE-2022-33720 [LOW] CWE-284 CVE-2022-33720: Improper authentication vulnerability in AppLock prior to SMR Aug-2022 Release 1 allows physical att Improper authentication vulnerability in AppLock prior to SMR Aug-2022 Release 1 allows physical attacker to access Chrome locked by AppLock via new tap shortcut.
nvd
CVE-2022-33693P4LOWCVSS 2.3≥ Q(10), R(11), S(12), < SMR Jul-2022 Release 12022-07-12
CVE-2022-33693 [LOW] CWE-200 CVE-2022-33693: Exposure of Sensitive Information in CID Manager prior to SMR Jul-2022 Release 1 allows local attack Exposure of Sensitive Information in CID Manager prior to SMR Jul-2022 Release 1 allows local attacker to access iccid via log.
nvd
CVE-2023-21438P4LOWCVSS 2.4≥ R(11), S(12), < SMR Feb-2023 Release 12023-02-09
CVE-2023-21438 [LOW] CWE-284 CVE-2023-21438: Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access App Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access App preview protected by Secure Folder.
nvd
CVE-2022-36857P4LOWCVSS 2.4≥ R(11) and Photo Editor prior to 3.0.23.43 in S(12), < SMR Sep-2022 Release 12022-09-09
CVE-2022-36857 [LOW] CWE-285 CVE-2022-36857: Improper Authorization vulnerability in Photo Editor prior to SMR Sep-2022 Release 1 allows physical Improper Authorization vulnerability in Photo Editor prior to SMR Sep-2022 Release 1 allows physical attackers to read internal application data.
nvd
CVE-2021-25513P4LOWCVSS 2.4≥ Select R(11.0) devices, < SMR Dec-2021 Release 12021-12-08
CVE-2021-25513 [LOW] CWE-269 CVE-2021-25513: An improper privilege management vulnerability in Apps Edge application prior to SMR Dec-2021 Releas An improper privilege management vulnerability in Apps Edge application prior to SMR Dec-2021 Release 1 allows unauthorized access to some device data on the lockscreen.
nvd
CVE-2022-33686P4LOWCVSS 2.3≥ Q(10), R(11), S(12), < SMR Jul-2022 Release 12022-07-12
CVE-2022-33686 [LOW] CWE-200 CVE-2022-33686: Exposure of Sensitive Information in GsmAlarmManager prior to SMR Jul-2022 Release 1 allows local at Exposure of Sensitive Information in GsmAlarmManager prior to SMR Jul-2022 Release 1 allows local attacker to access iccid via log.
nvd
CVE-2022-33700P4LOWCVSS 2.3≥ Q(10), R(11), S(12), < SMR Jul-2022 Release 12022-07-12
CVE-2022-33700 [LOW] CWE-200 CVE-2022-33700: Exposure of Sensitive Information in putDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 al Exposure of Sensitive Information in putDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 allows local attacker to access imsi via log.
nvd
CVE-2022-33699P4LOWCVSS 2.3≥ Q(10), R(11), S(12), < SMR Jul-2022 Release 12022-07-12
CVE-2022-33699 [LOW] CWE-200 CVE-2022-33699: Exposure of Sensitive Information in getDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 al Exposure of Sensitive Information in getDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 allows local attacker to access imsi via log.
nvd
Samsung Mobile Devices vulnerabilities | cvebase