Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In 2021
CVE-2021-25518
An improper boundary check in secure_log of LDFW and BL31 prior to SMR Dec-2021 Release 1 allows arbitrary memory write and code execution.
CVSS Score
6.4
EPSS Score
0.0
Published
2021-12-08
CVE-2021-25519
An improper access control vulnerability in CPLC prior to SMR Dec-2021 Release 1 allows local attackers to access CPLC information without permission.
CVSS Score
4.0
EPSS Score
0.0
Published
2021-12-08
CVE-2021-25520
Insecure caller check and input validation vulnerabilities in SearchKeyword deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to execute script codes in Samsung Internet.
CVSS Score
5.9
EPSS Score
0.005
Published
2021-12-08
CVE-2021-25521
Insecure caller check in sharevia deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to get current tab URL in Samsung Internet.
CVSS Score
4.0
EPSS Score
0.001
Published
2021-12-08
CVE-2021-25522
Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02.10 allows attacker to access victim's captured images without permission.
CVSS Score
5.3
EPSS Score
0.001
Published
2021-12-08
CVE-2021-25523
Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows attacker to get Samsung Account ID.
CVSS Score
4.0
EPSS Score
0.001
Published
2021-12-08
CVE-2021-25524
Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to get Samsung Account ID.
CVSS Score
4.0
EPSS Score
0.001
Published
2021-12-08
CVE-2021-25525
Improper check or handling of exception conditions vulnerability in Samsung Pay (US only) prior to version 4.0.65 allows attacker to use NFC without user recognition.
CVSS Score
2.0
EPSS Score
0.001
Published
2021-12-08
CVE-2021-25526
Intent redirection vulnerability in Samsung Blockchain Wallet prior to version 1.3.02.8 allows attacker to execute privileged action.
CVSS Score
4.0
EPSS Score
0.001
Published
2021-12-08
CVE-2021-25527
Improper export of Android application components vulnerability in Samsung Pay (India only) prior to version 4.1.77 allows attacker to access Bill Pay and Recharge menu without authentication.
CVSS Score
3.8
EPSS Score
0.001
Published
2021-12-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved