Shodan
Vulnerabilities
Vulnerable Software
Samsung:  Security Vulnerabilities
CVE-2022-23997
Unprotected component vulnerability in StTheaterModeDurationAlarmReceiver in Wear OS 3.0 prior to Firmware update Feb-2022 Release allows untrusted applications to disable theater mode without a proper permission.
CVSS Score
4.0
EPSS Score
0.002
Published
2022-02-11
CVE-2022-23998
Improper access control vulnerability in Camera prior to versions 11.1.02.16 in Android R(11), 10.5.03.77 in Android Q(10) and 9.0.6.68 in Android P(9) allows untrusted applications to take a picture in screenlock status.
CVSS Score
6.2
EPSS Score
0.002
Published
2022-02-11
CVE-2022-24002
Improper Authorization vulnerability in Link Sharing prior to version 12.4.00.3 allows attackers to open protected activity via PreconditionActivity.
CVSS Score
4.0
EPSS Score
0.002
Published
2022-02-11
CVE-2022-24003
Exposure of Sensitive Information vulnerability in Bixby Vision prior to version 3.7.50.6 allows attackers to access internal data of Bixby Vision via unprotected intent.
CVSS Score
4.0
EPSS Score
0.002
Published
2022-02-11
CVE-2022-24923
Improper access control vulnerability in Samsung SearchWidget prior to versions 2.3.00.6 in China models allows untrusted applications to load arbitrary URL and local files in webview.
CVSS Score
4.0
EPSS Score
0.001
Published
2022-02-11
CVE-2022-24924
An improper access control in LiveWallpaperService prior to versions 3.0.9.0 allows to create a specific named system directory without a proper permission.
CVSS Score
2.2
EPSS Score
0.038
Published
2022-02-11
CVE-2022-24926
Improper input validation vulnerability in SmartTagPlugin prior to version 1.2.15-6 allows privileged attackers to trigger a XSS on a victim's devices.
CVSS Score
5.7
EPSS Score
0.005
Published
2022-02-11
CVE-2022-24927
Improper privilege management vulnerability in Samsung Video Player prior to version 7.3.15.30 allows attackers to execute video files without permission.
CVSS Score
4.2
EPSS Score
0.001
Published
2022-02-11
CVE-2022-23425
Improper input validation in Exynos baseband prior to SMR Feb-2022 Release 1 allows attackers to send arbitrary NAS signaling messages with fake base station.
CVSS Score
8.6
EPSS Score
0.001
Published
2022-02-11
CVE-2022-23428
An improper boundary check in eden_runtime hal service prior to SMR Feb-2022 Release 1 allows arbitrary memory write and code execution.
CVSS Score
8.4
EPSS Score
0.0
Published
2022-02-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved