Samsung Pass

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Samsung Pass.

By the Year

In 2026 there have been 0 vulnerabilities in Samsung Pass. Samsung Pass did not have any published security vulnerabilities last year.

Year	Vulnerabilities	Average Score
2026	0	0.00
2025	0	0.00
2024	1	4.60
2023	6	5.85
2022	6	4.98
2021	1	7.80

It may take a day or so for new Samsung Pass vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Samsung Pass Security Vulnerabilities

Samsung Pass v4.4.04.7 Auth Bypass
CVE-2024-49405 4.6 - Medium - November 06, 2024

Improper authentication in Private Info in Samsung Pass in prior to version 4.4.04.7 allows physical attackers to access sensitive information in a specific scenario.

Auth Bypass Samsung Pass before 4.3.00.17
CVE-2023-42576 6.8 - Medium - December 05, 2023

Improper Authentication vulnerability in Samsung Pass prior to version 4.3.00.17 allows physical attackers to bypass authentication due to invalid exception handler.

authentification

Samsung Pass 4.3.00.17 Improper Auth (Android)
CVE-2023-42575 6.8 - Medium - December 05, 2023

Improper Authentication vulnerability in Samsung Pass prior to version 4.3.00.17 allows physical attackers to bypass authentication due to invalid flag setting.

AuthZ

Samsung Pass 4.3.00.17 Improper Auth Physical Bypass Vulnerability
CVE-2023-42554 6.8 - Medium - November 07, 2023

Improper Authentication vulnerabiity in Samsung Pass prior to version 4.3.00.17 allows physical attackers to bypass authentication.

authentification

Samsung Pass VULN: Improper Access Control before v4.2.03.1 for Physical Attack
CVE-2023-30677 4.6 - Medium - July 06, 2023

Improper access control vulnerability in Samsung Pass prior to version 4.2.03.1 allows physical attackers to access data of Samsung Pass on a certain state of an unlocked device.

Samsung Pass 4.2.03.1 Improper Access Control Allows Physical Attackers Data Access
CVE-2023-30676 4.6 - Medium - July 06, 2023

Improper access control vulnerability in Samsung Pass prior to version 4.2.03.1 allows physical attackers to access data of Samsung Pass.

Samsung Pass <4.2.03.1 Improper Auth Allows Local Access
CVE-2023-30675 5.5 - Medium - July 06, 2023

Improper authentication in Samsung Pass prior to version 4.2.03.1 allows local attacker to access stored account information when Samsung Wallet is not installed.

authentification

Samsung Pass <4.0.06.7 Improper Access Control via Pop-up View
CVE-2022-39910 4.2 - Medium - December 08, 2022

Improper access control vulnerability in Samsung Pass prior to version 4.0.06.7 allow physical attackers to access data of Samsung Pass on a certain state of an unlocked device using pop-up view.

Improper Access Control in Samsung Pass <4.0.05.1 (Unauth Open)
CVE-2022-39892 9.8 - Critical - November 09, 2022

Improper access control in Samsung Pass prior to version 4.0.05.1 allows attackers to unauthenticated access via keep open feature.

authentification

Samsung Pass <4.0.03.1 Improper Access Control (Physical Attacker)
CVE-2022-36851 4.6 - Medium - September 09, 2022

Improper access control vulnerability in Samsung pass prior to version 4.0.03.1 allow physical attackers to access data of Samsung pass on a certain state of an unlocked device.

Samsung Pass <4.0.04.10: UPI Payment Unauth Access
CVE-2022-36876 2.4 - Low - September 09, 2022

Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access account list without authentication.

Improper authorization in Samsung Pass prior to 1.0.00.33
CVE-2022-30730 4.6 - Medium - June 07, 2022

Improper authorization in Samsung Pass prior to 1.0.00.33 allows physical attackers to acess account list without authentication.

Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical attacker to view the screen
CVE-2022-27841 4.3 - Medium - April 11, 2022

Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical attacker to view the screen that is previously running without authentication

Improper Handling of Exceptional Conditions

Improper authentication in Samsung Pass prior to 3.0.02.4
CVE-2021-25505 7.8 - High - November 05, 2021

Improper authentication in Samsung Pass prior to 3.0.02.4 allows to use app without authentication when lockscreen is unlocked.

authentification

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Samsung Pass or by Samsung? Click the Watch button to subscribe.

Samsung
Vendor

Samsung Pass
Product

Samsung Pass

Don't miss out!

By the Year

Recent Samsung Pass Security Vulnerabilities

Samsung Pass v4.4.04.7 Auth Bypass CVE-2024-49405 4.6 - Medium - November 06, 2024

Auth Bypass Samsung Pass before 4.3.00.17 CVE-2023-42576 6.8 - Medium - December 05, 2023

Samsung Pass 4.3.00.17 Improper Auth (Android) CVE-2023-42575 6.8 - Medium - December 05, 2023

Samsung Pass 4.3.00.17 Improper Auth Physical Bypass Vulnerability CVE-2023-42554 6.8 - Medium - November 07, 2023

Samsung Pass VULN: Improper Access Control before v4.2.03.1 for Physical Attack CVE-2023-30677 4.6 - Medium - July 06, 2023

Samsung Pass 4.2.03.1 Improper Access Control Allows Physical Attackers Data Access CVE-2023-30676 4.6 - Medium - July 06, 2023

Samsung Pass <4.2.03.1 Improper Auth Allows Local Access CVE-2023-30675 5.5 - Medium - July 06, 2023

Samsung Pass <4.0.06.7 Improper Access Control via Pop-up View CVE-2022-39910 4.2 - Medium - December 08, 2022

Improper Access Control in Samsung Pass <4.0.05.1 (Unauth Open) CVE-2022-39892 9.8 - Critical - November 09, 2022

Samsung Pass <4.0.03.1 Improper Access Control (Physical Attacker) CVE-2022-36851 4.6 - Medium - September 09, 2022

Samsung Pass <4.0.04.10: UPI Payment Unauth Access CVE-2022-36876 2.4 - Low - September 09, 2022

Improper authorization in Samsung Pass prior to 1.0.00.33 CVE-2022-30730 4.6 - Medium - June 07, 2022

Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical attacker to view the screen CVE-2022-27841 4.3 - Medium - April 11, 2022

Improper authentication in Samsung Pass prior to 3.0.02.4 CVE-2021-25505 7.8 - High - November 05, 2021

Stay on top of Security Vulnerabilities

Samsung Vendor

Samsung PassProduct

Samsung Pass v4.4.04.7 Auth Bypass
CVE-2024-49405 4.6 - Medium - November 06, 2024

Auth Bypass Samsung Pass before 4.3.00.17
CVE-2023-42576 6.8 - Medium - December 05, 2023

Samsung Pass 4.3.00.17 Improper Auth (Android)
CVE-2023-42575 6.8 - Medium - December 05, 2023

Samsung Pass 4.3.00.17 Improper Auth Physical Bypass Vulnerability
CVE-2023-42554 6.8 - Medium - November 07, 2023

Samsung Pass VULN: Improper Access Control before v4.2.03.1 for Physical Attack
CVE-2023-30677 4.6 - Medium - July 06, 2023

Samsung Pass 4.2.03.1 Improper Access Control Allows Physical Attackers Data Access
CVE-2023-30676 4.6 - Medium - July 06, 2023

Samsung Pass <4.2.03.1 Improper Auth Allows Local Access
CVE-2023-30675 5.5 - Medium - July 06, 2023

Samsung Pass <4.0.06.7 Improper Access Control via Pop-up View
CVE-2022-39910 4.2 - Medium - December 08, 2022

Improper Access Control in Samsung Pass <4.0.05.1 (Unauth Open)
CVE-2022-39892 9.8 - Critical - November 09, 2022

Samsung Pass <4.0.03.1 Improper Access Control (Physical Attacker)
CVE-2022-36851 4.6 - Medium - September 09, 2022

Samsung Pass <4.0.04.10: UPI Payment Unauth Access
CVE-2022-36876 2.4 - Low - September 09, 2022

Improper authorization in Samsung Pass prior to 1.0.00.33
CVE-2022-30730 4.6 - Medium - June 07, 2022

Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical attacker to view the screen
CVE-2022-27841 4.3 - Medium - April 11, 2022

Improper authentication in Samsung Pass prior to 3.0.02.4
CVE-2021-25505 7.8 - High - November 05, 2021

Samsung
Vendor

Samsung Pass
Product