Lucene search
K

259 matches found

Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.6 views

PT-2026-25603

Improper authentication in Smart Switch prior to version 3.7.69.15 allows remote attackers to bypass authentication...

7.1CVSS5.9AI score0.00548EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.10 views

SAMSUNG Smart Switch 安全漏洞

SAMSUNG Smart Switch is a data migration tool developed by South Korea’s Samsung Corporation. Versions of SAMSUNG Smart Switch prior to 3.7.69.15 contained security vulnerabilities. These vulnerabilities were due to improper authentication procedures, and they could allow adjacent attackers to...

6.9CVSS5.8AI score0.00185EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.6 views

PT-2026-25609

Path traversal in Smart Switch prior to version 3.7.69.15 allows adjacent attackers to overwrite arbitrary files with Smart Switch privilege...

7.1CVSS5.9AI score0.00235EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.11 views

SAMSUNG Smart Switch 安全漏洞

SAMSUNG Smart Switch is a data migration tool developed by South Korea’s Samsung Corporation. Versions of SAMSUNG Smart Switch prior to 3.7.69.15 contained security vulnerabilities. These vulnerabilities were caused by replay attacks that allowed authentication bypasses, potentially allowing remo...

7.5CVSS5.8AI score0.00313EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.8 views

PT-2026-25600

Exposure of sensitive functionality to an unauthorized actor in Smart Switch prior to version 3.7.69.15 allows remote attackers to set a specific configuration...

5.3CVSS5.9AI score0.00282EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.15 views

SAMSUNG Smart Switch 安全漏洞

SAMSUNG Smart Switch is a data migration tool developed by South Korea’s Samsung Corporation. Versions of SAMSUNG Smart Switch prior to 3.7.69.15 contained security vulnerabilities. These vulnerabilities stemmed from the use of defective or insecure encryption algorithms, which could allow remote...

7.1CVSS5.8AI score0.00168EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:6 a.m.6 views

CVE-2019-20570

An issue was discovered on Samsung mobile devices with P9.0, O8.0, and N7.1 software. Attackers can bypass Factory Reset Protection FRP via Smart Switch. The Samsung ID is SVE-2019-15138 September 2019...

7.5CVSS7.1AI score0.00364EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:16 a.m.6 views

CVE-2022-27842

DLL hijacking vulnerability in Smart Switch PC prior to version 4.2.220224 allows attacker to execute abitrary code...

7.8CVSS7.1AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/06 6:13 a.m.15 views

CVE-2025-21078

Use of insufficiently random value of secretKey in Smart Switch prior to version 3.7.68.6 allows adjacent attackers to access backup data from applications...

8.8CVSS6.8AI score0.00208EPSS
Exploits0References1
OSV
OSV
added 2025/11/05 6:15 a.m.3 views

CVE-2025-21078

Use of insufficiently random value of secretKey in Smart Switch prior to version 3.7.68.6 allows adjacent attackers to access backup data from applications...

6.5CVSS5.8AI score0.00208EPSS
Exploits0References1
NVD
NVD
added 2025/11/05 6:15 a.m.5 views

CVE-2025-21078

Use of insufficiently random value of secretKey in Smart Switch prior to version 3.7.68.6 allows adjacent attackers to access backup data from applications...

8.8CVSS0.00208EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/05 5:41 a.m.3 views

CVE-2025-21078

Use of insufficiently random value of secretKey in Smart Switch prior to version 3.7.68.6 allows adjacent attackers to access backup data from applications...

8.8CVSS6.4AI score0.00208EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/05 5:41 a.m.9 views

CVE-2025-21078

Use of insufficiently random value of secretKey in Smart Switch prior to version 3.7.68.6 allows adjacent attackers to access backup data from applications...

8.8CVSS0.00208EPSS
Exploits0References1
CVE
CVE
added 2025/11/05 5:41 a.m.19 views

CVE-2025-21078

CVE-2025-21078 affects Samsung Smart Switch prior to version 3.7.68.6. The root cause is the use of an insufficiently random value for the secretKey, which could allow adjacent attackers to access application backups. Public sources in the connected documents consistently describe this impact and...

8.8CVSS6.4AI score0.00208EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/11/05 12:0 a.m.5 views

SAMSUNG Smart Switch 安全漏洞

SAMSUNG Smart Switch is a data migration tool from Samsung South Korea. A security vulnerability exists in SAMSUNG Smart Switch versions prior to 3.7.68.6, which stems from a lack of randomization of the secretKey and could lead to an adjacent attacker accessing application backup data...

8.8CVSS6.5AI score0.00208EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/05 12:0 a.m.7 views

PT-2025-45078

Name of the Vulnerable Software and Affected Versions Smart Switch versions prior to 3.7.68.6 Description The use of an insufficiently random value for the secretKey in Smart Switch allows nearby attackers to gain access to backup data from applications. Recommendations Update to version 3.7.68.6...

8.8CVSS6.8AI score0.00208EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/10/11 7:23 a.m.5 views

CVE-2025-21064

Improper authentication in Smart Switch prior to version 3.7.66.6 allows adjacent attackers to access transferring data...

8.8CVSS7AI score0.0025EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/11 7:23 a.m.7 views

CVE-2025-21062

Use of a broken or risky cryptographic algorithm in Smart Switch prior to version 3.7.67.2 allows local attackers to replace the restoring application. User interaction is required for triggering this vulnerability...

7.8CVSS6.5AI score0.00096EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/11 7:23 a.m.7 views

CVE-2025-21061

Cleartext storage of sensitive information in Smart Switch prior to version 3.7.67.2 allows local attackers to access sensitive data. User interaction is required for triggering this vulnerability...

7.1CVSS6.2AI score0.00096EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/11 7:23 a.m.5 views

CVE-2025-21060

Cleartext storage of sensitive information in Smart Switch prior to version 3.7.67.2 allows local attackers to access backup data from applications. User interaction is required for triggering this vulnerability...

5.5CVSS6.2AI score0.00094EPSS
Exploits0References1
Rows per page
Query Builder