Lucene search
K

50 matches found

Cvelist
Cvelist
added 2021/07/08 1:45 p.m.42 views

CVE-2021-25432

Information exposure vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O8.1 and below, and 3.9.10.11 in Android P9.0 and above allows untrusted applications to access chat data...

4.2AI score0.00231EPSS
Exploits0References1
CVE
CVE
added 2021/07/08 1:45 p.m.50 views

CVE-2021-25432

CVE-2021-25432 affects Samsung Members; information disclosure allows untrusted apps to access chat data. According to the provided sources, vulnerable versions are Samsung Members prior to 2.4.85.11 on Android O (8.1) and below, and prior to 3.9.10.11 on Android P (9.0) and above. The documents ...

3.3CVSS4.1AI score0.00231EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2021/06/11 3:15 p.m.22 views

CVE-2021-25403

Intent redirection vulnerability in Samsung Account prior to version 10.8.0.4 in Android P9.0 and below, and 12.2.0.9 in Android Q10.0 and above allows attacker to access contacts and file provider using SettingWebView component...

3.3CVSS0.00231EPSS
Exploits0References1
Prion
Prion
added 2021/06/11 3:15 p.m.19 views

Information disclosure

Intent redirection vulnerability in Samsung Account prior to version 10.8.0.4 in Android P9.0 and below, and 12.2.0.9 in Android Q10.0 and above allows attacker to access contacts and file provider using SettingWebView component...

2.1CVSS4.1AI score0.00231EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/06/11 2:45 p.m.67 views

CVE-2021-25403

Technical details are not publicly provided in the connected documents for CVE-2021-25403. Monitor official advisories and vendor updates for further information.

3.3CVSS4.1AI score0.00231EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/06/11 2:45 p.m.23 views

CVE-2021-25403

Intent redirection vulnerability in Samsung Account prior to version 10.8.0.4 in Android P9.0 and below, and 12.2.0.9 in Android Q10.0 and above allows attacker to access contacts and file provider using SettingWebView component...

4.2AI score0.00231EPSS
Exploits0References1
NVD
NVD
added 2021/04/09 6:15 p.m.36 views

CVE-2021-25374

An improper authorization vulnerability in Samsung Members "samsungrewards" scheme for deeplink in versions 2.4.83.9 in Android O8.1 and below, and 3.9.00.9 in Android P9.0 and above allows remote attackers to access a user data related with Samsung Account...

8.6CVSS0.03072EPSS
Exploits0References2
NVD
NVD
added 2021/04/09 6:15 p.m.16 views

CVE-2021-25377

Intent redirection in Samsung Experience Service versions 10.8.0.4 in Android P9.0 below, and 12.2.0.5 in Android Q10.0 above allows attacker to execute privileged action...

7.8CVSS0.00209EPSS
Exploits0References2
NVD
NVD
added 2021/04/09 6:15 p.m.17 views

CVE-2021-25381

Using unsafe PendingIntent in Samsung Account in versions 10.8.0.4 in Android P9.0 and below, and 12.1.1.3 in Android Q10.0 and above allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent...

7.8CVSS0.00213EPSS
Exploits0References2
Prion
Prion
added 2021/04/09 6:15 p.m.16 views

Spoofing

A pendingIntent hijacking vulnerability in Create Movie prior to SMR APR-2021 Release 1 in Android O8.x and P9.0, 3.4.81.1 in Android Q10,0, and 3.6.80.7 in Android R11.0 allows unprivileged applications to access contact information...

2.1CVSS5.4AI score0.00107EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/04/09 6:15 p.m.13 views

Design/Logic Flaw

Intent redirection in Samsung Experience Service versions 10.8.0.4 in Android P9.0 below, and 12.2.0.5 in Android Q10.0 above allows attacker to execute privileged action...

4.6CVSS7.5AI score0.00209EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/04/09 6:15 p.m.15 views

Code injection

Using unsafe PendingIntent in Samsung Account in versions 10.8.0.4 in Android P9.0 and below, and 12.1.1.3 in Android Q10.0 and above allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent...

4.6CVSS7.2AI score0.00213EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/04/09 5:40 p.m.50 views

CVE-2021-25381

CVE-2021-25381 affects Samsung Account and involves unsafe PendingIntent usage. Affected: Samsung Account versions 10.8.0.4 on Android P (9.0) and earlier, and 12.1.1.3 on Android Q (10.0) and later. Root cause: hijacking of PendingIntent enables a local attacker to perform unauthorized actions w...

7.8CVSS7.2AI score0.00213EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/04/09 5:38 p.m.28 views

CVE-2021-25374

An improper authorization vulnerability in Samsung Members "samsungrewards" scheme for deeplink in versions 2.4.83.9 in Android O8.1 and below, and 3.9.00.9 in Android P9.0 and above allows remote attackers to access a user data related with Samsung Account...

8.6CVSS8.5AI score0.03072EPSS
Exploits0References2
CVE
CVE
added 2021/04/09 5:37 p.m.64 views

CVE-2021-25373

The CVE-2021-25373 entry affects Samsung Customization Service for Android O–R. The issue is caused by unsafe PendingIntent usage in the Customization Service, allowing local attackers to perform unauthorized actions by hijacking PendingIntents. Affected versions are: Android O: prior to 2.2.02.1...

7.8CVSS7.3AI score0.00213EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/04/09 5:34 p.m.23 views

CVE-2021-25357

A pendingIntent hijacking vulnerability in Create Movie prior to SMR APR-2021 Release 1 in Android O8.x and P9.0, 3.4.81.1 in Android Q10,0, and 3.6.80.7 in Android R11.0 allows unprivileged applications to access contact information...

5.6CVSS5.6AI score0.00107EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/04/09 12:0 a.m.5 views

Samsung Experience Service 授权问题漏洞

Samsung mobile devices O are products of Samsung Corporation in South Korea.Samsung mobile devices O is a series of cell phones.Samsung mobile devices P is a series of mobile hard drives.Samsung mobile devices Q is a series of TVs.Samsung mobile devices Q is a series of TVs. Samsung mobile device...

7.8CVSS7.4AI score0.00209EPSS
Exploits0References3
Prion
Prion
added 2021/03/04 10:15 p.m.20 views

Design/Logic Flaw

Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 in Android O8.1 and below and 3.8.00.13 in Android P9.0 and above allows unauthorized actions including denial of service attack by hijacking the provider...

2.1CVSS4.2AI score0.00216EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/03/04 9:3 p.m.25 views

CVE-2021-25343

Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 in Android O8.1 and below and 3.8.00.13 in Android P9.0 and above allows unauthorized actions including denial of service attack by hijacking the provider...

4CVSS4.6AI score0.00216EPSS
Exploits0References2
Nvidia
Nvidia
added 2021/01/19 12:0 a.m.41 views

Security Bulletin: NVIDIA SHIELD TV - January 2021

NVIDIA has released a software security update for NVIDIA SHIELD® TV. This update addresses issues that may lead to denial of service, escalation of privileges, or data loss. To protect your system, download and install this software update through the update notification that will appear on the...

7.8CVSS7AI score0.00381EPSS
Exploits0Affected Software1
Rows per page
Query Builder