Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In October 2022
CVE-2022-39860
Improper access control vulnerability in QuickShare prior to version 13.2.3.5 allows attackers to access sensitive information via implicit broadcast.
CVSS Score
4.4
EPSS Score
0.001
Published
2022-10-07
CVE-2022-39861
Unprotected Receiver in AtBroadcastReceiver in FactoryCamera prior to version 3.5.51 allows attackers to record video without camera privilege.
CVSS Score
5.9
EPSS Score
0.001
Published
2022-10-07
CVE-2022-39862
Improper authorization in Dynamic Lockscreen prior to SMR Sep-2022 Release 1 in Android R(11) and 3.3.03.66 in Android S(12) allows unauthorized use of javascript interface api.
CVSS Score
5.3
EPSS Score
0.003
Published
2022-10-07
CVE-2022-39863
Intent redirection vulnerability in Samsung Account prior to version 13.5.01.3 allows attackers to access content providers without permission.
CVSS Score
3.6
EPSS Score
0.003
Published
2022-10-07
CVE-2022-39864
Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows attackers to access sensitive information via implicit intent.
CVSS Score
3.3
EPSS Score
0.002
Published
2022-10-07
CVE-2022-39865
Improper access control vulnerability in ContentsSharingActivity.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast.
CVSS Score
4.0
EPSS Score
0.002
Published
2022-10-07
CVE-2022-39866
Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast.
CVSS Score
4.0
EPSS Score
0.002
Published
2022-10-07
CVE-2022-39855
Improper access control vulnerability in FACM application prior to SMR Oct-2022 Release 1 allows a local attacker to connect arbitrary AP and Bluetooth devices.
CVSS Score
5.1
EPSS Score
0.0
Published
2022-10-07
CVE-2022-39856
Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information.
CVSS Score
4.0
EPSS Score
0.0
Published
2022-10-07
CVE-2022-39857
Improper access control vulnerability in CameraTestActivity in FactoryCameraFB prior to version 3.5.51 allows attackers to access broadcasting Intent as system uid privilege.
CVSS Score
7.3
EPSS Score
0.001
Published
2022-10-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved