Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Account
(Samsung)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 23 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-06-07 | CVE-2022-30736 | Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission. | Account | 5.3 | ||
| 2022-06-07 | CVE-2022-30737 | Implicit Intent hijacking vulnerability in Samsung Account prior to version 13.2.00.6 allows attackers to get email ID. | Account | 5.3 | ||
| 2022-06-07 | CVE-2022-30739 | Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get an user email or phone number with a normal level permission. | Account | 4.3 | ||
| 2022-06-07 | CVE-2022-30743 | Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission. | Account | 5.3 | ||
| 2022-10-07 | CVE-2022-39863 | Intent redirection vulnerability in Samsung Account prior to version 13.5.01.3 allows attackers to access content providers without permission. | Account | 4.7 | ||
| 2022-10-07 | CVE-2022-39874 | Sensitive log information leakage vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout. | Account | 5.5 | ||
| 2022-10-07 | CVE-2022-39875 | Improper component protection vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout. | Account | 4.4 | ||
| 2023-11-07 | CVE-2023-42546 | Use of implicit intent for sensitive communication vulnerability in startAgreeToDisclaimerActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | Account | 6.5 | ||
| 2023-11-07 | CVE-2023-42547 | Use of implicit intent for sensitive communication vulnerability in startEmailValidationActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | Account | 6.5 | ||
| 2023-11-07 | CVE-2023-42548 | Use of implicit intent for sensitive communication vulnerability in startMandatoryCheckActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | Account | 6.5 |