Shodan
Vulnerabilities
Vulnerable Software
Samsung:  Security Vulnerabilities
CVE-2022-39844
Improper validation of integrity check vulnerability in Smart Switch PC prior to version 4.3.22083 allows local attackers to delete arbitrary directory using directory junction.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-09-09
CVE-2022-39845
Improper validation of integrity check vulnerability in Samsung Kies prior to version 2.6.4.22074 allows local attackers to delete arbitrary directory using directory junction.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-09-09
CVE-2022-39846
DLL hijacking vulnerability in Smart Switch PC prior to version 4.3.22083_3 allows attacker to execute arbitrary code.
CVSS Score
6.2
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36874
Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751 allows attacker to access device IMEI and Serial number.
CVSS Score
5.9
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36875
Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151 allows attacker to access the file without permission.
CVSS Score
6.6
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36876
Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access account list without authentication.
CVSS Score
1.8
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36877
Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global and 14.0.02.4 in China allows local attackers to access device identification via log.
CVSS Score
2.8
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36878
Exposure of Sensitive Information in Find My Mobile prior to version 7.2.25.14 allows local attacker to access IMEI via log.
CVSS Score
3.3
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36859
Improper input validation vulnerability in SmartTagPlugin prior to version 1.2.21-6 allows privileged attackers to trigger a XSS on a victim's devices.
CVSS Score
5.7
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36864
Improper access control and intent redirection in Samsung Email prior to 6.1.70.20 allows attacker to access specific formatted file and execute privileged behavior.
CVSS Score
4.0
EPSS Score
0.001
Published
2022-09-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved