Samsung

Internet

25 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2022-30740

  • EPSS 0.06%
  • Published 07.06.2022 19:15:10
  • Last modified 21.11.2024 07:03:17

Improper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69 allows physical attackers to guess stored credit card numbers.

4.3

CVE-2022-30738

  • EPSS 0.29%
  • Published 07.06.2022 19:15:10
  • Last modified 21.11.2024 07:03:16

Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address bar via executing script.

4.3

CVE-2022-27839

  • EPSS 0.16%
  • Published 11.04.2022 20:15:23
  • Last modified 21.11.2024 06:56:17

Improper authentication vulnerability in SecretMode in Samsung Internet prior to version 16.2.1 allows attackers to access bookmark tab without proper credentials.

6.5

CVE-2022-22290

  • EPSS 0.31%
  • Published 14.01.2022 20:15:15
  • Last modified 21.11.2024 06:46:34

Incorrect download source UI in Downloads in Samsung Internet prior to 16.0.6.23 allows attackers to perform domain spoofing via a crafted HTML page.

5.5

CVE-2022-22284

  • EPSS 0.05%
  • Published 10.01.2022 14:12:44
  • Last modified 21.11.2024 06:46:33

Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to bypass secret mode password authentication

3.3

CVE-2021-25521

  • EPSS 0.06%
  • Published 08.12.2021 15:15:08
  • Last modified 21.11.2024 05:55:09

Insecure caller check in sharevia deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to get current tab URL in Samsung Internet.

6.1

CVE-2021-25520

  • EPSS 0.45%
  • Published 08.12.2021 15:15:08
  • Last modified 21.11.2024 05:55:09

Insecure caller check and input validation vulnerabilities in SearchKeyword deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to execute script codes in Samsung Internet.

5.9

CVE-2021-25466

  • EPSS 0.24%
  • Published 09.09.2021 19:15:11
  • Last modified 21.11.2024 05:55:02

Improper scheme check vulnerability in Samsung Internet prior to version 15.0.2.47 allows attackers to perform Man-in-the-middle attack and obtain Samsung Account token.

5.3

CVE-2021-25445

  • EPSS 0.24%
  • Published 05.08.2021 20:15:08
  • Last modified 21.11.2024 05:55:00

Unprotected component vulnerability in Samsung Internet prior to version 14.2 allows untrusted application to access internal files in Samsung Internet.

6.5

CVE-2021-25419

  • EPSS 0.28%
  • Published 11.06.2021 15:15:10
  • Last modified 21.11.2024 05:54:57

Non-compliance of recommended secure coding scheme in Samsung Internet prior to version 14.0.1.62 allows attackers to display fake URL in address bar via phising URL link.