Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samsung galaxy app - vulnerabilities and exploits
(subscribe to this query)
7.9
CVSSv2
CVE-2015-0863
GALAXY Apps (aka Samsung Apps, Samsung Updates, or com.sec.android.app.samsungapps) prior to 14120405.03.012 allows man-in-the-middle malicious users to obtain sensitive information and execute arbitrary code.
Samsung Samsung Account App -
Samsung Galaxy App -
7.9
CVSSv2
CVE-2015-0864
Samsung Account (AKA com.osp.app.signin) prior to 1.6.0069 and 2.x prior to 2.1.0069 allows man-in-the-middle malicious users to obtain sensitive information and execute arbitrary code.
Samsung Galaxy App -
Samsung Samsung Account App -
5
CVSSv2
CVE-2022-22288
Improper authorization vulnerability in Galaxy Store before 4.5.36.5 allows remote app installation of the allowlist.
Samsung Galaxy Store
2 Github repositories
2.1
CVSSv2
CVE-2013-4764
Samsung Galaxy S3/S4 exposes an unprotected component allowing an unprivileged app to send arbitrary SMS texts to arbitrary destinations without permission.
Samsung Galaxy S3 Firmware 1.0
Samsung Galaxy S4 Firmware 1.4
5.4
CVSSv2
CVE-2020-35693
On some Samsung phones and tablets running Android up to and including 7.1.1, it is possible for an attacker-controlled Bluetooth Low Energy (BLE) device to pair silently with a vulnerable target device, without any user interaction, when the target device's Bluetooth is on,...
Google Android
1 Github repository
NA
CVE-2023-38297
An issue exists in a third-party com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable pre-installed app with a package name of com.factory.mmigroup (versionCode='3'...
7.8
CVSSv2
CVE-2016-7991
On Samsung Galaxy S4 through S7 devices, the "omacp" app ignores security information embedded in the OMACP messages resulting in remote unsolicited WAP Push SMS messages being accepted, parsed, and handled by the device, leading to unauthorized configuration changes, a...
Google Android 5.0.1
Google Android 5.0
Google Android 4.4.4
Google Android 4.4.3
Google Android 6.0.1
Google Android 6.0
Google Android 4.3
Google Android 4.2.2
Google Android 5.1.1
Google Android 5.1
Google Android 4.4.1
Google Android 4.3.1
Google Android 5.1.0
Google Android 5.0.2
Google Android 4.4.2
Google Android 4.4
4.3
CVSSv2
CVE-2016-6910
The non-existent notification listener vulnerability was introduced in the initial Android 5.0.2 builds for the Samsung Galaxy S6 Edge devices, but the vulnerability can persist on the device even after the device has been upgraded to an Android 5.1.1 or 6.0.1 build. The vulnerab...
Google Android 5.1.1
Google Android 5.0.2
Google Android 6.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started