Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Galaxy_watch_plugin
(Samsung)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 6 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-06-11 | CVE-2021-25420 | Improper log management vulnerability in Galaxy Watch PlugIn prior to version 2.2.05.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. | Galaxy_watch_plugin | 5.5 | ||
| 2022-03-10 | CVE-2022-25823 | Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.220126741 allows attackers to access user information in log. | Galaxy_watch_plugin | 3.3 | ||
| 2022-03-10 | CVE-2022-25827 | Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.22012751 allows attacker to access password information of connected WiFiAp in the log | Galaxy_watch_plugin | 3.3 | ||
| 2022-09-09 | CVE-2022-36873 | Improper restriction of broadcasting Intent in GalaxyStoreBridgePageLinker of?Waterplugin prior to version 2.2.11.22081151 leaks MAC address of the connected Bluetooth device. | Galaxy_watch_plugin | 6.5 | ||
| 2022-09-09 | CVE-2022-36874 | Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751 allows attacker to access device IMEI and Serial number. | Galaxy_watch_plugin | 6.2 | ||
| 2022-09-09 | CVE-2022-36875 | Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151 allows attacker to access the file without permission. | Galaxy_watch_plugin | 5.5 |