Samsung

Galaxy Watch Plugin

6 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.2

CVE-2022-36874

  • EPSS 0.04%
  • Published 09.09.2022 15:15:13
  • Last modified 21.11.2024 07:13:56

Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751 allows attacker to access device IMEI and Serial number.

5.5

CVE-2022-36875

  • EPSS 0.11%
  • Published 09.09.2022 15:15:13
  • Last modified 21.11.2024 07:13:57

Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151 allows attacker to access the file without permission.

6.5

CVE-2022-36873

  • EPSS 0.06%
  • Published 09.09.2022 15:15:12
  • Last modified 21.11.2024 07:13:56

Improper restriction of broadcasting Intent in GalaxyStoreBridgePageLinker of?Waterplugin prior to version 2.2.11.22081151 leaks MAC address of the connected Bluetooth device.

3.3

CVE-2022-25827

  • EPSS 0.06%
  • Published 10.03.2022 17:47:24
  • Last modified 21.11.2024 06:53:04

Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.22012751 allows attacker to access password information of connected WiFiAp in the log

3.3

CVE-2022-25823

  • EPSS 0.06%
  • Published 10.03.2022 17:47:22
  • Last modified 21.11.2024 06:53:04

Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.220126741 allows attackers to access user information in log.

5.5

CVE-2021-25420

  • EPSS 0.05%
  • Published 11.06.2021 15:15:10
  • Last modified 21.11.2024 05:54:57

Improper log management vulnerability in Galaxy Watch PlugIn prior to version 2.2.05.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log.