Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samsung account vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv3
CVE-2021-25403
Intent redirection vulnerability in Samsung Account prior to version 10.8.0.4 in Android P(9.0) and below, and 12.2.0.9 in Android Q(10.0) and above allows malicious user to access contacts and file provider using SettingWebView component.
Samsung Account
Samsung Account 12.2.0.9
7.8
CVSSv3
CVE-2021-25381
Using unsafe PendingIntent in Samsung Account in versions 10.8.0.4 in Android P(9.0) and below, and 12.1.1.3 in Android Q(10.0) and above allows local malicious users to perform unauthorized action without permission via hijacking the PendingIntent.
Samsung Account 10.8.0.4
Samsung Account 12.1.1.3
8
CVSSv3
CVE-2015-0863
GALAXY Apps (aka Samsung Apps, Samsung Updates, or com.sec.android.app.samsungapps) prior to 14120405.03.012 allows man-in-the-middle malicious users to obtain sensitive information and execute arbitrary code.
Samsung Samsung Account App -
Samsung Galaxy App -
8
CVSSv3
CVE-2015-0864
Samsung Account (AKA com.osp.app.signin) prior to 1.6.0069 and 2.x prior to 2.1.0069 allows man-in-the-middle malicious users to obtain sensitive information and execute arbitrary code.
Samsung Galaxy App -
Samsung Samsung Account App -
4.7
CVSSv3
CVE-2022-39863
Intent redirection vulnerability in Samsung Account prior to version 13.5.01.3 allows malicious users to access content providers without permission.
Samsung Account
5.5
CVSSv3
CVE-2022-39874
Sensitive log information leakage vulnerability in Samsung Account prior to version 13.5.0 allows malicious users to unauthorized logout.
Samsung Account
3.9
CVSSv3
CVE-2021-25350
Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically proximate malicious users to access user information via log.
Samsung Account
2.4
CVSSv3
CVE-2021-25351
Improper Access Control in EmailValidationView in Samsung Account prior to version 10.7.0.7 and 12.1.1.3 allows physically proximate malicious users to log out user account on device without user password.
Samsung Account
6.5
CVSSv3
CVE-2023-42548
Use of implicit intent for sensitive communication vulnerability in startMandatoryCheckActivity in Samsung Account prior to version 14.5.00.7 allows malicious users to access arbitrary file with Samsung Account privilege.
Samsung Account
6.5
CVSSv3
CVE-2023-42549
Use of implicit intent for sensitive communication vulnerability in startNameValidationActivity in Samsung Account prior to version 14.5.00.7 allows malicious users to access arbitrary file with Samsung Account privilege.
Samsung Account
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »