Shodan
Vulnerabilities
Vulnerable Software
Samsung:  Security Vulnerabilities
CVE-2024-20858
Improper access control vulnerability in setCocktailHostCallbacks of CocktailBarService prior to SMR May-2024 Release 1 allows local attackers to access information of current application.
CVSS Score
4.0
EPSS Score
0.002
Published
2024-05-07
CVE-2024-20859
Improper access control vulnerability in FactoryCamera prior to SMR May-2024 Release 1 allows local attackers to take pictures without privilege.
CVSS Score
5.5
EPSS Score
0.002
Published
2024-05-07
CVE-2024-20860
Improper export of android application components vulnerability in TelephonyUI prior to SMR May-2024 Release 1 allows local attackers to reboot the device without proper permission.
CVSS Score
4.0
EPSS Score
0.001
Published
2024-05-07
CVE-2024-20861
Use after free vulnerability in SveService prior to SMR May-2024 Release 1 allows local privileged attackers to cause memory corruption.
CVSS Score
6.0
EPSS Score
0.002
Published
2024-05-07
CVE-2024-20855
Improper access control vulnerability in multitasking framework prior to SMR May-2024 Release 1 allows physical attackers to access unlocked screen for a while.
CVSS Score
2.4
EPSS Score
0.002
Published
2024-05-07
CVE-2024-20850
Use of Implicit Intent for Sensitive Communication in Samsung Pay prior to version 5.4.99 allows local attackers to access information of Samsung Pay.
CVSS Score
6.2
EPSS Score
0.001
Published
2024-04-02
CVE-2024-20851
Improper access control vulnerability in Samsung Data Store prior to version 5.3.00.4 allows local attackers to launch arbitrary activity with Samsung Data Store privilege.
CVSS Score
4.4
EPSS Score
0.001
Published
2024-04-02
CVE-2024-20852
Improper verification of intent by broadcast receiver vulnerability in SmartThings prior to version 1.8.13.22 allows local attackers to access testing configuration.
CVSS Score
5.9
EPSS Score
0.001
Published
2024-04-02
CVE-2024-20853
Improper verification of intent by broadcast receiver vulnerability in ThemeStore prior to 5.3.05.2 allows local attackers to write arbitrary files to sandbox of ThemeStore.
CVSS Score
5.1
EPSS Score
0.002
Published
2024-04-02
CVE-2024-20854
Improper handling of insufficient privileges vulnerability in Samsung Camera prior to versions 12.1.0.31 in Android 12, 13.1.02.07 in Android 13, and 14.0.01.06 in Android 14 allows local attackers to access image data.
CVSS Score
5.9
EPSS Score
0.001
Published
2024-04-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved