13 matches found
EUVD-2017-9007
Malware in sbrugna...
EUVD-2018-8124
Malware in sbrugna...
EUVD-2022-42354
Malicious code in bioql PyPI...
CVE-2022-39909
Insufficient verification of data authenticity vulnerability in Samsung Gear IconX PC Manager prior to version 2.1.221019.51 allows local attackers to create arbitrary file using symbolic link...
CVE-2022-39909
Insufficient verification of data authenticity vulnerability in Samsung Gear IconX PC Manager prior to version 2.1.221019.51 allows local attackers to create arbitrary file using symbolic link...
Authorization
Insufficient verification of data authenticity vulnerability in Samsung Gear IconX PC Manager prior to version 2.1.221019.51 allows local attackers to create arbitrary file using symbolic link...
PT-2022-25102 · Samsung · Samsung Gear Iconx Pc Manager
Name of the Vulnerable Software and Affected Versions: Samsung Gear IconX PC Manager versions prior to 2.1.221019.51 Description: The issue is related to insufficient verification of data authenticity, allowing local attackers to create arbitrary files using symbolic links. This can be exploited ...
CVE-2022-39909
Insufficient verification of data authenticity vulnerability in Samsung Gear IconX PC Manager prior to version 2.1.221019.51 allows local attackers to create arbitrary file using symbolic link...
CVE-2022-39909
CVE-2022-39909 concerns Samsung Gear IconX PC Manager. The issue is described as insufficient verification of data authenticity in versions before 2.1.221019.51, allowing local attackers to create arbitrary files via symbolic links. Connected sources (Red Hat, CNNVD, CVE listings, PT-Security) co...
CVE-2018-16270
Samsung Galaxy Gear series before build RE2 includes the hcidump utility with no privilege or permission restriction. This allows an unprivileged process to dump Bluetooth HCI packets to an arbitrary file path...
Code injection
In Samsung Gear products, Bluetooth link key is updated to the different key which is same with attacker's link key. It can be attacked without user's intention only if attacker can reveal the Bluetooth address of target device and paired user's smartphone...
CVE-2017-17860
In Samsung Gear products, Bluetooth link key is updated to the different key which is same with attacker's link key. It can be attacked without user's intention only if attacker can reveal the Bluetooth address of target device and paired user's smartphone...
Samsung Gear - Exported components, External URLs, SD-card access vulnerabilities
HackApp vulnerability scanner discovered that application Samsung Gear published at the 'play' market has multiple vulnerabilities...