CVE-2025-20984
- EPSS 0.02%
- Published 04.06.2025 04:56:14
- Last modified 04.06.2025 14:54:33
Incorrect default permission in Samsung Cloud for Galaxy Watch prior to SMR Jun-2025 Release 1 allows local attackers to access data in Samsung Cloud for Galaxy Watch.
CVE-2023-42578
- EPSS 0.27%
- Published 05.12.2023 03:15:18
- Last modified 21.11.2024 08:22:49
Improper handling of insufficient permissions or privileges vulnerability in Samsung Data Store prior to version 5.2.00.7 allows remote attackers to access location information without permission.
CVE-2023-21447
- EPSS 0.05%
- Published 09.02.2023 19:15:16
- Last modified 21.11.2024 07:42:53
Improper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local attackers to access information with Samsung Cloud's privilege via implicit intent.
CVE-2023-21448
- EPSS 0.08%
- Published 09.02.2023 19:15:16
- Last modified 21.11.2024 07:42:53
Path traversal vulnerability in Samsung Cloud prior to version 5.3.0.32 allows attacker to access specific png file.
CVE-2022-33713
- EPSS 0.28%
- Published 12.07.2022 14:15:18
- Last modified 21.11.2024 07:08:23
Implicit Intent hijacking vulnerability in Samsung Cloud prior to version 5.2.0 allows attacker to get sensitive information.
CVE-2022-24932
- EPSS 0.02%
- Published 10.03.2022 17:46:57
- Last modified 21.11.2024 06:51:24
Improper Protection of Alternate Path vulnerability in Setup wizard process prior to SMR Mar-2022 Release 1 allows physical attacker package installation before finishing Setup wizard.
CVE-2021-25368
- EPSS 0.14%
- Published 25.03.2021 17:15:14
- Last modified 21.11.2024 05:54:51
Hijacking vulnerability in Samsung Cloud prior to version 4.7.0.3 allows attackers to intercept when the provider is executed.