Shodan
Vulnerabilities
Vulnerable Software
Samsung:  Security Vulnerabilities
CVE-2022-36866
Improper access control vulnerability in Broadcaster in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below allows attackers to identify the device.
CVSS Score
4.0
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36867
Improper access control vulnerability in Editor Lite prior to version 4.0.40.14 allows attackers to access sensitive information.
CVSS Score
5.9
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36869
Improper access control vulnerability in ContactsDumpActivity of?Contacts Provider prior to version 12.7.59 allows attacker to access the file without permission.
CVSS Score
6.6
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36870
Pending Intent hijacking vulnerability in MTransferNotificationManager in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.
CVSS Score
5.0
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36871
Pending Intent hijacking vulnerability in NotiCenterUtils in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.
CVSS Score
5.0
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36872
Pending Intent hijacking vulnerability in SpayNotification in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.
CVSS Score
5.0
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36873
Improper restriction of broadcasting Intent in GalaxyStoreBridgePageLinker of?Waterplugin prior to version 2.2.11.22081151 leaks MAC address of the connected Bluetooth device.
CVSS Score
5.9
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36851
Improper access control vulnerability in Samsung pass prior to version 4.0.03.1 allow physical attackers to access data of Samsung pass on a certain state of an unlocked device.
CVSS Score
3.9
EPSS Score
0.001
Published
2022-09-09
CVE-2022-36857
Improper Authorization vulnerability in Photo Editor prior to SMR Sep-2022 Release 1 allows physical attackers to read internal application data.
CVSS Score
1.9
EPSS Score
0.0
Published
2022-09-09
CVE-2022-40280
An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3_close after sqlite3_open_v2, leading to a denial of service.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-09-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved