50 matches found
CVE-2021-25432
Information exposure vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O8.1 and below, and 3.9.10.11 in Android P9.0 and above allows untrusted applications to access chat data...
CVE-2021-25432
CVE-2021-25432 affects Samsung Members; information disclosure allows untrusted apps to access chat data. According to the provided sources, vulnerable versions are Samsung Members prior to 2.4.85.11 on Android O (8.1) and below, and prior to 3.9.10.11 on Android P (9.0) and above. The documents ...
CVE-2021-25403
Intent redirection vulnerability in Samsung Account prior to version 10.8.0.4 in Android P9.0 and below, and 12.2.0.9 in Android Q10.0 and above allows attacker to access contacts and file provider using SettingWebView component...
Information disclosure
Intent redirection vulnerability in Samsung Account prior to version 10.8.0.4 in Android P9.0 and below, and 12.2.0.9 in Android Q10.0 and above allows attacker to access contacts and file provider using SettingWebView component...
CVE-2021-25403
Technical details are not publicly provided in the connected documents for CVE-2021-25403. Monitor official advisories and vendor updates for further information.
CVE-2021-25403
Intent redirection vulnerability in Samsung Account prior to version 10.8.0.4 in Android P9.0 and below, and 12.2.0.9 in Android Q10.0 and above allows attacker to access contacts and file provider using SettingWebView component...
CVE-2021-25374
An improper authorization vulnerability in Samsung Members "samsungrewards" scheme for deeplink in versions 2.4.83.9 in Android O8.1 and below, and 3.9.00.9 in Android P9.0 and above allows remote attackers to access a user data related with Samsung Account...
CVE-2021-25377
Intent redirection in Samsung Experience Service versions 10.8.0.4 in Android P9.0 below, and 12.2.0.5 in Android Q10.0 above allows attacker to execute privileged action...
CVE-2021-25381
Using unsafe PendingIntent in Samsung Account in versions 10.8.0.4 in Android P9.0 and below, and 12.1.1.3 in Android Q10.0 and above allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent...
Spoofing
A pendingIntent hijacking vulnerability in Create Movie prior to SMR APR-2021 Release 1 in Android O8.x and P9.0, 3.4.81.1 in Android Q10,0, and 3.6.80.7 in Android R11.0 allows unprivileged applications to access contact information...
Design/Logic Flaw
Intent redirection in Samsung Experience Service versions 10.8.0.4 in Android P9.0 below, and 12.2.0.5 in Android Q10.0 above allows attacker to execute privileged action...
Code injection
Using unsafe PendingIntent in Samsung Account in versions 10.8.0.4 in Android P9.0 and below, and 12.1.1.3 in Android Q10.0 and above allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent...
CVE-2021-25381
CVE-2021-25381 affects Samsung Account and involves unsafe PendingIntent usage. Affected: Samsung Account versions 10.8.0.4 on Android P (9.0) and earlier, and 12.1.1.3 on Android Q (10.0) and later. Root cause: hijacking of PendingIntent enables a local attacker to perform unauthorized actions w...
CVE-2021-25374
An improper authorization vulnerability in Samsung Members "samsungrewards" scheme for deeplink in versions 2.4.83.9 in Android O8.1 and below, and 3.9.00.9 in Android P9.0 and above allows remote attackers to access a user data related with Samsung Account...
CVE-2021-25373
The CVE-2021-25373 entry affects Samsung Customization Service for Android O–R. The issue is caused by unsafe PendingIntent usage in the Customization Service, allowing local attackers to perform unauthorized actions by hijacking PendingIntents. Affected versions are: Android O: prior to 2.2.02.1...
CVE-2021-25357
A pendingIntent hijacking vulnerability in Create Movie prior to SMR APR-2021 Release 1 in Android O8.x and P9.0, 3.4.81.1 in Android Q10,0, and 3.6.80.7 in Android R11.0 allows unprivileged applications to access contact information...
Samsung Experience Service 授权问题漏洞
Samsung mobile devices O are products of Samsung Corporation in South Korea.Samsung mobile devices O is a series of cell phones.Samsung mobile devices P is a series of mobile hard drives.Samsung mobile devices Q is a series of TVs.Samsung mobile devices Q is a series of TVs. Samsung mobile device...
Design/Logic Flaw
Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 in Android O8.1 and below and 3.8.00.13 in Android P9.0 and above allows unauthorized actions including denial of service attack by hijacking the provider...
CVE-2021-25343
Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 in Android O8.1 and below and 3.8.00.13 in Android P9.0 and above allows unauthorized actions including denial of service attack by hijacking the provider...
Security Bulletin: NVIDIA SHIELD TV - January 2021
NVIDIA has released a software security update for NVIDIA SHIELD® TV. This update addresses issues that may lead to denial of service, escalation of privileges, or data loss. To protect your system, download and install this software update through the update notification that will appear on the...