Shodan
Vulnerabilities
Vulnerable Software
Samsung:  Security Vulnerabilities
CVE-2022-39872
Improper restriction of broadcasting Intent in ShareLive prior to version 13.2.03.5 leaks MAC address of the connected Bluetooth device.
CVSS Score
5.9
EPSS Score
0.001
Published
2022-10-07
CVE-2022-39860
Improper access control vulnerability in QuickShare prior to version 13.2.3.5 allows attackers to access sensitive information via implicit broadcast.
CVSS Score
4.4
EPSS Score
0.001
Published
2022-10-07
CVE-2022-39861
Unprotected Receiver in AtBroadcastReceiver in FactoryCamera prior to version 3.5.51 allows attackers to record video without camera privilege.
CVSS Score
5.9
EPSS Score
0.001
Published
2022-10-07
CVE-2022-39862
Improper authorization in Dynamic Lockscreen prior to SMR Sep-2022 Release 1 in Android R(11) and 3.3.03.66 in Android S(12) allows unauthorized use of javascript interface api.
CVSS Score
5.3
EPSS Score
0.003
Published
2022-10-07
CVE-2022-39863
Intent redirection vulnerability in Samsung Account prior to version 13.5.01.3 allows attackers to access content providers without permission.
CVSS Score
3.6
EPSS Score
0.003
Published
2022-10-07
CVE-2022-39864
Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows attackers to access sensitive information via implicit intent.
CVSS Score
3.3
EPSS Score
0.002
Published
2022-10-07
CVE-2022-39865
Improper access control vulnerability in ContentsSharingActivity.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast.
CVSS Score
4.0
EPSS Score
0.002
Published
2022-10-07
CVE-2022-39866
Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast.
CVSS Score
4.0
EPSS Score
0.002
Published
2022-10-07
CVE-2022-39857
Improper access control vulnerability in CameraTestActivity in FactoryCameraFB prior to version 3.5.51 allows attackers to access broadcasting Intent as system uid privilege.
CVSS Score
7.3
EPSS Score
0.001
Published
2022-10-07
CVE-2022-39858
Path traversal vulnerability in AtBroadcastReceiver in FactoryCamera prior to version 3.5.51 allows attackers to write arbitrary file as FactoryCamera privilege.
CVSS Score
7.3
EPSS Score
0.0
Published
2022-10-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved