Samsung

An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE)

CVE-2022-40279 7.5 - High - September 29, 2022

An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). l2_packet_receive_timeout in wpa_supplicant/src/l2_packet/l2_packet_pcap.c has a missing check on the return value of pcap_dispatch, leading to a denial of service (malfunction).

Unchecked Return Value

An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE)

CVE-2022-40278 7.5 - High - September 29, 2022

An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3_free after sqlite3_exec, leading to a denial of service.

Dangling pointer

A Buffer Access with Incorrect Length Value vulnerablity in the TEE_MACComputeFinal function in Samsung mTower through 0.3.0

CVE-2022-40757 7.5 - High - September 16, 2022

A Buffer Access with Incorrect Length Value vulnerablity in the TEE_MACComputeFinal function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_MACComputeFinal with an excessive size value of messageLen.

Buffer Overflow

A Buffer Access with Incorrect Length Value vulnerablity in the TEE_CipherUpdate function in Samsung mTower through 0.3.0

CVE-2022-40758 7.5 - High - September 16, 2022

A Buffer Access with Incorrect Length Value vulnerablity in the TEE_CipherUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_CipherUpdate with an excessive size value of srcLen.

Buffer Overflow

A NULL pointer dereference issue in the TEE_MACCompareFinal function in Samsung mTower through 0.3.0

CVE-2022-40759 7.5 - High - September 16, 2022

A NULL pointer dereference issue in the TEE_MACCompareFinal function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_MACCompareFinal with a NULL pointer for the parameter operation.

NULL Pointer Dereference

A Buffer Access with Incorrect Length Value vulnerablity in the TEE_MACUpdate function in Samsung mTower through 0.3.0

CVE-2022-40760 7.5 - High - September 16, 2022

A Buffer Access with Incorrect Length Value vulnerablity in the TEE_MACUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_MACUpdate with an excessive size value of chunkSize.

Buffer Overflow

The function tee_obj_free in Samsung mTower through 0.3.0

CVE-2022-40761 7.5 - High - September 16, 2022

The function tee_obj_free in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_AllocateOperation with a disturbed heap layout, related to utee_cryp_obj_alloc.

Improper Input Validation

A Memory Allocation with Excessive Size Value vulnerablity in the TEE_Realloc function in Samsung mTower through 0.3.0

CVE-2022-40762 7.5 - High - September 16, 2022

A Memory Allocation with Excessive Size Value vulnerablity in the TEE_Realloc function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_Realloc with an excessive number for the parameter len.

Allocation of Resources Without Limits or Throttling

DLL hijacking vulnerability in Smart Switch PC prior to version 4.3.22083_3

CVE-2022-39846 7.8 - High - September 09, 2022

DLL hijacking vulnerability in Smart Switch PC prior to version 4.3.22083_3 allows attacker to execute arbitrary code.

DLL preloading

Improper restriction of broadcasting Intent in GalaxyStoreBridgePageLinker of?Waterplugin prior to version 2.2.11.22081151 leaks MAC address of the connected Bluetooth device.

CVE-2022-36873 6.5 - Medium - September 09, 2022

Improper restriction of broadcasting Intent in GalaxyStoreBridgePageLinker of?Waterplugin prior to version 2.2.11.22081151 leaks MAC address of the connected Bluetooth device.

Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751

CVE-2022-36874 6.2 - Medium - September 09, 2022

Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751 allows attacker to access device IMEI and Serial number.

Improper Handling of Exceptional Conditions

Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151

CVE-2022-36875 5.5 - Medium - September 09, 2022

Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151 allows attacker to access the file without permission.

Exposure of Resource to Wrong Sphere

Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10

CVE-2022-36876 2.4 - Low - September 09, 2022

Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access account list without authentication.

AuthZ

Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global and 14.0.02.4 in China

CVE-2022-36877 3.3 - Low - September 09, 2022

Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global and 14.0.02.4 in China allows local attackers to access device identification via log.

Insertion of Sensitive Information into Log File

Exposure of Sensitive Information in Find My Mobile prior to version 7.2.25.14

CVE-2022-36878 3.3 - Low - September 09, 2022

Exposure of Sensitive Information in Find My Mobile prior to version 7.2.25.14 allows local attacker to access IMEI via log.

Information Disclosure

Improper validation of integrity check vulnerability in Smart Switch PC prior to version 4.3.22083

CVE-2022-39844 7.1 - High - September 09, 2022

Improper validation of integrity check vulnerability in Smart Switch PC prior to version 4.3.22083 allows local attackers to delete arbitrary directory using directory junction.

Improper Validation of Integrity Check Value

Improper validation of integrity check vulnerability in Samsung Kies prior to version 2.6.4.22074

CVE-2022-39845 7.1 - High - September 09, 2022

Improper validation of integrity check vulnerability in Samsung Kies prior to version 2.6.4.22074 allows local attackers to delete arbitrary directory using directory junction.

Improper Validation of Integrity Check Value

Improper access control vulnerability in Samsung pass prior to version 4.0.03.1

CVE-2022-36851 4.6 - Medium - September 09, 2022

Improper access control vulnerability in Samsung pass prior to version 4.0.03.1 allow physical attackers to access data of Samsung pass on a certain state of an unlocked device.

Improper input validation vulnerability in SmartTagPlugin prior to version 1.2.21-6

CVE-2022-36859 4.8 - Medium - September 09, 2022

Improper input validation vulnerability in SmartTagPlugin prior to version 1.2.21-6 allows privileged attackers to trigger a XSS on a victim's devices.

Improper Input Validation

Improper access control and intent redirection in Samsung Email prior to 6.1.70.20

CVE-2022-36864 7.8 - High - September 09, 2022

Improper access control and intent redirection in Samsung Email prior to 6.1.70.20 allows attacker to access specific formatted file and execute privileged behavior.

Improper access control vulnerability in Editor Lite prior to version 4.0.40.14

CVE-2022-36867 5.5 - Medium - September 09, 2022

Improper access control vulnerability in Editor Lite prior to version 4.0.40.14 allows attackers to access sensitive information.

Improper access control vulnerability in ContactsDumpActivity of?Contacts Provider prior to version 12.7.59

CVE-2022-36869 6.1 - Medium - September 09, 2022

Improper access control vulnerability in ContactsDumpActivity of?Contacts Provider prior to version 12.7.59 allows attacker to access the file without permission.

Pending Intent hijacking vulnerability in MTransferNotificationManager in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global

CVE-2022-36870 6.5 - Medium - September 09, 2022

Pending Intent hijacking vulnerability in MTransferNotificationManager in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.

Pending Intent hijacking vulnerability in NotiCenterUtils in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global

CVE-2022-36871 6.5 - Medium - September 09, 2022

Pending Intent hijacking vulnerability in NotiCenterUtils in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.

Pending Intent hijacking vulnerability in SpayNotification in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global

CVE-2022-36872 6.5 - Medium - September 09, 2022

Pending Intent hijacking vulnerability in SpayNotification in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.

An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE)

CVE-2022-40280 7.5 - High - September 08, 2022

An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3_close after sqlite3_open_v2, leading to a denial of service.

Missing Release of Resource after Effective Lifetime

An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE)

CVE-2022-40281 7.5 - High - September 08, 2022

An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). cyassl_connect_step2 in curl/vtls/cyassl.c has a missing X509_free after SSL_get_peer_certificate, leading to information disclosure.

Memory Leak

sign_pFwInfo in Samsung mTower through 0.3.0 has a missing check on the return value of EC_KEY_set_private_key

CVE-2022-39828 7.5 - High - September 05, 2022

sign_pFwInfo in Samsung mTower through 0.3.0 has a missing check on the return value of EC_KEY_set_private_key, leading to a denial of service.

There is a NULL pointer dereference in aes256_encrypt in Samsung mTower through 0.3.0 due to a missing check on the return value of EVP_CIPHER_CTX_new.

CVE-2022-39829 7.5 - High - September 05, 2022

There is a NULL pointer dereference in aes256_encrypt in Samsung mTower through 0.3.0 due to a missing check on the return value of EVP_CIPHER_CTX_new.

NULL Pointer Dereference

sign_pFwInfo in Samsung mTower through 0.3.0 has a missing check on the return value of EC_KEY_set_public_key_affine_coordinates

CVE-2022-39830 7.5 - High - September 05, 2022

sign_pFwInfo in Samsung mTower through 0.3.0 has a missing check on the return value of EC_KEY_set_public_key_affine_coordinates, leading to a denial of service.

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference

CVE-2022-36621 7.5 - High - September 01, 2022

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEE_AllocateTransientObject.

NULL Pointer Dereference

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference

CVE-2022-36622 7.5 - High - September 01, 2022

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEE_GetObjectInfo1.

NULL Pointer Dereference

TEE_Malloc in Samsung mTower through 0.3.0

CVE-2022-38155 7.5 - High - August 11, 2022

TEE_Malloc in Samsung mTower through 0.3.0 allows a trusted application to achieve Excessive Memory Allocation via a large len value, as demonstrated by a Numaker-PFM-M2351 TEE kernel crash.

Allocation of Resources Without Limits or Throttling

Implicit Intent hijacking vulnerability in Galaxy Wearable prior to version 2.2.50

CVE-2022-36838 4.6 - Medium - August 05, 2022

Implicit Intent hijacking vulnerability in Galaxy Wearable prior to version 2.2.50 allows attacker to get sensitive information.

Intent redirection vulnerability using implicit intent in Samsung email prior to version 6.1.70.20

CVE-2022-36837 5.5 - Medium - August 05, 2022

Intent redirection vulnerability using implicit intent in Samsung email prior to version 6.1.70.20 allows attacker to get sensitive information.

Sensitive information exposure in onCharacteristicRead in Charm by Samsung prior to version 1.2.3

CVE-2022-33733 3.3 - Low - August 05, 2022

Sensitive information exposure in onCharacteristicRead in Charm by Samsung prior to version 1.2.3 allows attacker to get bluetooth connection information without permission.

AuthZ

Implicit Intent hijacking vulnerability in Samsung Internet Browser prior to version 17.0.7.34

CVE-2022-36835 4 - Medium - August 05, 2022

Implicit Intent hijacking vulnerability in Samsung Internet Browser prior to version 17.0.7.34 allows attackers to access arbitrary files.

DLL hijacking vulnerability in Samsung Update Setup prior to version 2.2.9.50

CVE-2022-36840 7.3 - High - August 05, 2022

DLL hijacking vulnerability in Samsung Update Setup prior to version 2.2.9.50 allows attackers to execute arbitrary code.

DLL preloading

Sensitive information exposure in onCharacteristicChanged in Charm by Samsung prior to version 1.2.3

CVE-2022-33734 5.5 - Medium - August 05, 2022

Sensitive information exposure in onCharacteristicChanged in Charm by Samsung prior to version 1.2.3 allows attacker to get bluetooth connection information without permission.

AuthZ

SQL injection vulnerability via IAPService in Samsung Checkout prior to version 5.0.53.1

CVE-2022-36839 5.5 - Medium - August 05, 2022

SQL injection vulnerability via IAPService in Samsung Checkout prior to version 5.0.53.1 allows attackers to access IAP information.

SQL Injection

Path traversal vulnerability in UriFileUtils of Samsung Notes prior to version 4.3.14.39

CVE-2022-36831 5.5 - Medium - August 05, 2022

Path traversal vulnerability in UriFileUtils of Samsung Notes prior to version 4.3.14.39 allows attacker to access some file as Samsung Notes permission.

Directory traversal

Improper access control vulnerability in WebApp in Cameralyzer prior to versions 3.2.22, 3.3.22, 3.4.22 and 3.5.51

CVE-2022-36832 3.3 - Low - August 05, 2022

Improper access control vulnerability in WebApp in Cameralyzer prior to versions 3.2.22, 3.3.22, 3.4.22 and 3.5.51 allows attackers to access external storage as Cameralyzer privilege.

Improper Privilege Management

Exposure of Sensitive Information vulnerability in Game Launcher prior to version 6.0.07

CVE-2022-36834 5 - Medium - August 05, 2022

Exposure of Sensitive Information vulnerability in Game Launcher prior to version 6.0.07 allows local attacker to access app data with user interaction.

Information Disclosure

The TEE_PopulateTransientObject and __utee_from_attr functions in Samsung mTower 0.3.0

CVE-2022-35858 7.8 - High - August 04, 2022

The TEE_PopulateTransientObject and __utee_from_attr functions in Samsung mTower 0.3.0 allow a trusted application to trigger a memory overwrite, denial of service, and information disclosure by invoking the function TEE_PopulateTransientObject with a large number in the parameter attrCount.

Memory Leak

Improper validation of integrity check vulnerability in Samsung USB Driver Windows Installer for Mobile Phones prior to version 1.7.56.0

CVE-2022-33711 5.5 - Medium - July 12, 2022

Improper validation of integrity check vulnerability in Samsung USB Driver Windows Installer for Mobile Phones prior to version 1.7.56.0 allows local attackers to delete arbitrary directory using directory junction.

Improper Validation of Integrity Check Value

Information exposure in Calendar prior to version 12.3.05.10000

CVE-2022-33705 3.3 - Low - July 12, 2022

Information exposure in Calendar prior to version 12.3.05.10000 allows attacker to access calendar schedule without READ_CALENDAR permission.

AuthZ

Implicit Intent hijacking vulnerability in Samsung Cloud prior to version 5.2.0

CVE-2022-33713 7.5 - High - July 12, 2022

Implicit Intent hijacking vulnerability in Samsung Cloud prior to version 5.2.0 allows attacker to get sensitive information.

Improper access control vulnerability in Samsung Gallery prior to version 13.1.05.8

CVE-2022-33706 2.4 - Low - July 12, 2022

Improper access control vulnerability in Samsung Gallery prior to version 13.1.05.8 allows physical attackers to access the pictures using S Pen air gesture.

Improper identifier creation logic in Find My Mobile prior to version 7.2.24.12

CVE-2022-33707 5.3 - Medium - July 12, 2022

Improper identifier creation logic in Find My Mobile prior to version 7.2.24.12 allows attacker to identify the device.

Use of Insufficiently Random Values

Improper input validation vulnerability in AppsPackageInstaller in Galaxy Store prior to version 4.5.41.8

CVE-2022-33708 7.8 - High - July 12, 2022

Improper input validation vulnerability in AppsPackageInstaller in Galaxy Store prior to version 4.5.41.8 allows local attackers to launch activities as Galaxy Store privilege.

Improper Privilege Management

Improper input validation vulnerability in ApexPackageInstaller in Galaxy Store prior to version 4.5.41.8

CVE-2022-33709 7.8 - High - July 12, 2022

Improper input validation vulnerability in ApexPackageInstaller in Galaxy Store prior to version 4.5.41.8 allows local attackers to launch activities as Galaxy Store privilege.

Improper Privilege Management

Improper input validation vulnerability in BillingPackageInsraller in Galaxy Store prior to version 4.5.41.8

CVE-2022-33710 7.8 - High - July 12, 2022

Improper input validation vulnerability in BillingPackageInsraller in Galaxy Store prior to version 4.5.41.8 allows local attackers to launch activities as Galaxy Store privilege.

Improper Privilege Management

Improper access control vulnerability in Smart Things prior to 1.7.85.25

CVE-2022-30749 7.8 - High - June 07, 2022

Improper access control vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to add arbitrary smart devices by bypassing login activity.

authentification

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6

CVE-2022-30743 5.3 - Medium - June 07, 2022

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission.

Improper Privilege Management

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6

CVE-2022-30739 4.3 - Medium - June 07, 2022

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get an user email or phone number with a normal level permission.

Improper Privilege Management

Implicit Intent hijacking vulnerability in Samsung Account prior to version 13.2.00.6

CVE-2022-30737 5.3 - Medium - June 07, 2022

Implicit Intent hijacking vulnerability in Samsung Account prior to version 13.2.00.6 allows attackers to get email ID.

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6

CVE-2022-30736 5.3 - Medium - June 07, 2022

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission.

Improper Privilege Management

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6

CVE-2022-30735 7.5 - High - June 07, 2022

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the access_token without permission.

Improper Privilege Management

Sensitive information exposure in Sign-out log in Samsung Account prior to version 13.2.00.6

CVE-2022-30734 5.3 - Medium - June 07, 2022

Sensitive information exposure in Sign-out log in Samsung Account prior to version 13.2.00.6 allows attackers to get an user email or phone number without permission.

Exposure of Resource to Wrong Sphere

Sensitive information exposure in Sign-in log in Samsung Account prior to version 13.2.00.6

CVE-2022-30733 5.3 - Medium - June 07, 2022

Sensitive information exposure in Sign-in log in Samsung Account prior to version 13.2.00.6 allows attackers to get an user email or phone number without permission.

Insertion of Sensitive Information into Log File

Exposure of Sensitive Information vulnerability in Samsung Account prior to version 13.2.00.6

CVE-2022-30732 7.5 - High - June 07, 2022

Exposure of Sensitive Information vulnerability in Samsung Account prior to version 13.2.00.6 allows attacker to access sensitive information via onActivityResult.

Exposure of Resource to Wrong Sphere

DLL hijacking vulnerability in KiesWrapper in Samsung Kies prior to version 2.6.4.22043_1

CVE-2022-30744 7.8 - High - June 07, 2022

DLL hijacking vulnerability in KiesWrapper in Samsung Kies prior to version 2.6.4.22043_1 allows attacker to execute arbitrary code.

DLL preloading

Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2.24.12

CVE-2022-30742 3.3 - Low - June 07, 2022

Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2.24.12 allows local attackers with log access permissio to get sim card information through device log.

Insertion of Sensitive Information into Log File

Improper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69

CVE-2022-30740 4.3 - Medium - June 07, 2022

Improper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69 allows physical attackers to guess stored credit card numbers.

Insecure Storage of Sensitive Information

Improper access control vulnerability in My Files prior to version 13.1.00.193

CVE-2022-30731 5.5 - Medium - June 07, 2022

Improper access control vulnerability in My Files prior to version 13.1.00.193 allows attackers to access arbitrary private files in My Files application.

AuthZ

Improper check in Loader in Samsung Internet prior to 17.0.1.69

CVE-2022-30738 4.3 - Medium - June 07, 2022

Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address bar via executing script.

Improper Check for Unusual or Exceptional Conditions

Improper authorization in Samsung Pass prior to 1.0.00.33

CVE-2022-30730 4.6 - Medium - June 07, 2022

Improper authorization in Samsung Pass prior to 1.0.00.33 allows physical attackers to acess account list without authentication.

AuthZ

Improper access control vulnerability in Quick Share prior to version 13.1.2.4

CVE-2022-30745 5.5 - Medium - June 07, 2022

Improper access control vulnerability in Quick Share prior to version 13.1.2.4 allows attacker to access internal files in Quick Share.

AuthZ

Unprotected dynamic receiver in Samsung Members prior to version 4.2.005

CVE-2022-30748 5.5 - Medium - June 07, 2022

Unprotected dynamic receiver in Samsung Members prior to version 4.2.005 allows attacker to launch arbitrary activity.

PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25

CVE-2022-30747 5.5 - Medium - June 07, 2022

PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit Intent.

Incorrect Default Permissions

Missing caller check in Smart Things prior to version 1.7.85.12

CVE-2022-30746 7.5 - High - June 07, 2022

Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access senstive information remotely using javascript interface API.

Exposure of Resource to Wrong Sphere

Sensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7.2.24.12

CVE-2022-30741 3.3 - Low - June 07, 2022

Sensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7.2.24.12 allows local attackers with log access permission to get sim card information through device log.

Insertion of Sensitive Information into Log File

Improper input validation vulnerability in InstallAgent in Galaxy Store prior to version 4.5.41.8

CVE-2022-28791 5.5 - Medium - May 03, 2022

Improper input validation vulnerability in InstallAgent in Galaxy Store prior to version 4.5.41.8 allows attacker to overwrite files stored in a specific path. The patch adds proper protection to prevent overwrite to existing files.

Improper Input Validation

DLL hijacking vulnerability in Gear IconX PC Manager prior to version 2.1.220405.51 allows attacker to execute arbitrary code

CVE-2022-28792 7.8 - High - May 03, 2022

DLL hijacking vulnerability in Gear IconX PC Manager prior to version 2.1.220405.51 allows attacker to execute arbitrary code. The patch adds proper absolute path to prevent dll hijacking.

DLL preloading

Unprotected activities in Voice Note prior to version 21.3.51.11 allows attackers to record voice without user interaction

CVE-2022-28789 5.5 - Medium - May 03, 2022

Unprotected activities in Voice Note prior to version 21.3.51.11 allows attackers to record voice without user interaction. The patch adds proper permission for vulnerable activities.

AuthZ

Improper authentication in Link to Windows Service prior to version 2.3.04.1 allows attacker to lock the device

CVE-2022-28790 3.3 - Low - May 03, 2022

Improper authentication in Link to Windows Service prior to version 2.3.04.1 allows attacker to lock the device. The patch adds proper caller signature check logic.

authentification

Uncontrolled search path element vulnerability in Samsung Android USB Driver windows installer program prior to version 1.7.50

CVE-2022-28779 7.8 - High - April 11, 2022

Uncontrolled search path element vulnerability in Samsung Android USB Driver windows installer program prior to version 1.7.50 allows attacker to execute arbitrary code.

DLL preloading

Uncontrolled search path element vulnerability in Samsung Update prior to version 3.0.77.0

CVE-2022-28541 7.8 - High - April 11, 2022

Uncontrolled search path element vulnerability in Samsung Update prior to version 3.0.77.0 allows attackers to execute arbitrary code as Samsung Update permission.

DLL preloading

Improper access control vulnerability in Samsung Security Supporter prior to version 1.2.40.0

CVE-2022-28778 3.3 - Low - April 11, 2022

Improper access control vulnerability in Samsung Security Supporter prior to version 1.2.40.0 allows attacker to set the arbitrary folder as Secret Folder without Samsung Security Supporter permission

AuthZ

Improper access control vulnerability in Samsung Members prior to version 13.6.08.5

CVE-2022-28777 3.3 - Low - April 11, 2022

Improper access control vulnerability in Samsung Members prior to version 13.6.08.5 allows local attacker to execute call function without CALL_PHONE permission.

AuthZ

Improper access control vulnerability in Galaxy Store prior to version 4.5.36.4

CVE-2022-28776 7.8 - High - April 11, 2022

Improper access control vulnerability in Galaxy Store prior to version 4.5.36.4 allows attacker to install applications from Galaxy Store without user interactions.

AuthZ

DLL hijacking vulnerability in Kies prior to version 2.6.4.22014_2

CVE-2022-27843 7.8 - High - April 11, 2022

DLL hijacking vulnerability in Kies prior to version 2.6.4.22014_2 allows attacker to execute abitrary code.

DLL preloading

DLL hijacking vulnerability in Smart Switch PC prior to version 4.2.22022_4

CVE-2022-27842 7.8 - High - April 11, 2022

DLL hijacking vulnerability in Smart Switch PC prior to version 4.2.22022_4 allows attacker to execute abitrary code.

DLL preloading

Improper access control vulnerability in FactoryCamera prior to version 2.1.96

CVE-2022-27838 7.8 - High - April 11, 2022

Improper access control vulnerability in FactoryCamera prior to version 2.1.96 allows attacker to access the file with system privilege.

AuthZ

Improper access control vulnerability in SamsungRecovery prior to version 8.1.43.0

CVE-2022-27840 4.4 - Medium - April 11, 2022

Improper access control vulnerability in SamsungRecovery prior to version 8.1.43.0 allows local attckers to delete arbitrary files as SamsungRecovery permission.

Incorrect Default Permissions

Improper access control vulnerability in Samsung Flow prior to version 4.8.06.5

CVE-2022-28775 3.3 - Low - April 11, 2022

Improper access control vulnerability in Samsung Flow prior to version 4.8.06.5 allows attacker to write the file without Samsung Flow permission.

AuthZ

Path traversal vulnerability in unzip method of InstallAgentCommonHelper in Galaxy store prior to version 4.5.40.5

CVE-2022-28544 5.5 - Medium - April 11, 2022

Path traversal vulnerability in unzip method of InstallAgentCommonHelper in Galaxy store prior to version 4.5.40.5 allows attacker to access the file of Galaxy store.

Directory traversal

Path traversal vulnerability in Samsung Flow prior to version 4.8.07.4

CVE-2022-28543 5.5 - Medium - April 11, 2022

Path traversal vulnerability in Samsung Flow prior to version 4.8.07.4 allows local attackers to read arbitrary files as Samsung Flow permission.

Directory traversal

Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.40.5

CVE-2022-28542 5.5 - Medium - April 11, 2022

Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.40.5 allows local attackers to access privileged content providers as Galaxy Store permission.

AuthZ

Improper authentication vulnerability in SecretMode in Samsung Internet prior to version 16.2.1

CVE-2022-27839 4 - Medium - April 11, 2022

Improper authentication vulnerability in SecretMode in Samsung Internet prior to version 16.2.1 allows attackers to access bookmark tab without proper credentials.

authentification

Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical attacker to view the screen

CVE-2022-27841 4.3 - Medium - April 11, 2022

Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical attacker to view the screen that is previously running without authentication

Improper Handling of Exceptional Conditions

Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.22012751

CVE-2022-25827 3.3 - Low - March 10, 2022

Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.22012751 allows attacker to access password information of connected WiFiAp in the log

Information Disclosure

Information Exposure vulnerability in Galaxy Watch3 Plugin prior to version 2.2.09.22012751

CVE-2022-25830 3.3 - Low - March 10, 2022

Information Exposure vulnerability in Galaxy Watch3 Plugin prior to version 2.2.09.22012751 allows attacker to access password information of connected WiFiAp in the log

Information Disclosure

Information Exposure vulnerability in Watch Active2 Plugin prior to version 2.2.08.22012751

CVE-2022-25829 3.3 - Low - March 10, 2022

Information Exposure vulnerability in Watch Active2 Plugin prior to version 2.2.08.22012751 allows attacker to access password information of connected WiFiAp in the log

Information Disclosure

Information Exposure vulnerability in Watch Active Plugin prior to version 2.2.07.22012751

CVE-2022-25828 3.3 - Low - March 10, 2022

Information Exposure vulnerability in Watch Active Plugin prior to version 2.2.07.22012751 allows attacker to access password information of connected WiFiAp in the log

Information Disclosure

Improper access control vulnerability in BixbyTouch prior to version 2.2.00.6 in China models

CVE-2022-25824 3.3 - Low - March 10, 2022

Improper access control vulnerability in BixbyTouch prior to version 2.2.00.6 in China models allows untrusted applications to load arbitrary URL and local files in webview.

Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.220126741

CVE-2022-25823 3.3 - Low - March 10, 2022

Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.220126741 allows attackers to access user information in log.

Information Disclosure

Information Exposure vulnerability in Galaxy S3 Plugin prior to version 2.2.03.22012751

CVE-2022-25826 3.3 - Low - March 10, 2022

Information Exposure vulnerability in Galaxy S3 Plugin prior to version 2.2.03.22012751 allows attacker to access password information of connected WiFiAp in the log

Information Disclosure

Improper Protection of Alternate Path vulnerability in Setup wizard process prior to SMR Mar-2022 Release 1

CVE-2022-24932 4.6 - Medium - March 10, 2022

Improper Protection of Alternate Path vulnerability in Setup wizard process prior to SMR Mar-2022 Release 1 allows physical attacker package installation before finishing Setup wizard.

forced browsing

An Improper access control vulnerability in StRetailModeReceiver in Wear OS 3.0 prior to Firmware update MAR-2022 Release

CVE-2022-24930 3.3 - Low - March 10, 2022

An Improper access control vulnerability in StRetailModeReceiver in Wear OS 3.0 prior to Firmware update MAR-2022 Release allows untrusted applications to reset default app settings without a proper permission

AuthZ