CVE漏洞

OStack程序员社区-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2022-30713

Improper validation vulnerability in LSOItemData prior to SMR Jun-2022 Release 1 allows attackers to launch certain activities.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：69 | 回复：0
CVE-2022-30714

Information exposure vulnerability in SemIWCMonitor prior to SMR Jun-2022 Release 1 allows local attackers to get MAC address information.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：70 | 回复：0
CVE-2022-30715

Improper access control vulnerability in DofViewer prior to SMR Jun-2022 Release 1 allows attackers to control floating system alert window.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：72 | 回复：0
CVE-2022-30716

Unprotected broadcast in sendIntentForToastDumpLog in DisplayToast prior to SMR Jun-2022 Release 1 allows untrusted applications to access toast message information from device.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：75 | 回复：0
CVE-2022-30717

Improper caller check in AR Emoji prior to SMR Jun-2022 Release 1 allows untrusted applications to use some camera functions via deeplink.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：105 | 回复：0
CVE-2022-30719

Improper input validation check logic vulnerability in libsmkvextractor prior to SMR Jun-2022 Release 1 allows attackers to trigger crash.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：94 | 回复：0
CVE-2022-30720

Improper input validation check logic vulnerability in libsmkvextractor prior to SMR Jun-2022 Release 1 allows attackers to trigger crash.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：116 | 回复：0
CVE-2022-30721

Improper input validation check logic vulnerability in libsmkvextractor prior to SMR Jun-2022 Release 1 allows attackers to trigger crash.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：152 | 回复：0
CVE-2022-30722

Implicit Intent hijacking vulnerability in Samsung Account prior to SMR Jun-2022 Release 1 allows attackers to bypass user confirmation of Samsung Account.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：189 | 回复：0
CVE-2022-30723

Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers in activateVoiceRecognitionWithDevice function of Bluetooth prior to SMR Jun-2022 Release 1 leaks MAC a ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：153 | 回复：0
CVE-2022-30724

Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers in sendIntentSessionCompleted function of Bluetooth prior to SMR Jun-2022 Release 1 leaks MAC address o ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：80 | 回复：0
CVE-2022-30725

Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers in sendIntentSessionError function of Bluetooth prior to SMR Jun-2022 Release 1 leaks MAC address of th ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：103 | 回复：0
CVE-2022-30726

Unprotected component vulnerability in DeviceSearchTrampoline in SecSettingsIntelligence prior to SMR Jun-2022 Release 1 allows local attackers to launch activities of SecSettingsIntelligence.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：92 | 回复：0
CVE-2022-30729

Implicit Intent hijacking vulnerability in Settings prior to SMR Jun-2022 Release 1 allows attackers to get Wi-Fi SSID and password via a malicious QR code scanner.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：57 | 回复：0
CVE-2022-30727

Improper handling of insufficient permissions vulnerability in addAppPackageNameToAllowList in PersonaManagerService prior to SMR Jun-2022 Release 1 allows local attackers to set some setting value in ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：57 | 回复：0
CVE-2022-30728

Information exposure vulnerability in ScanPool prior to SMR Jun-2022 Release 1 allows local attackers to get MAC address information.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：58 | 回复：0
CVE-2022-30730

Improper authorization in Samsung Pass prior to 1.0.00.33 allows physical attackers to acess account list without authentication.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：49 | 回复：0
CVE-2022-30731

Improper access control vulnerability in My Files prior to version 13.1.00.193 allows attackers to access arbitrary private files in My Files application.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：42 | 回复：0
CVE-2022-30732

Exposure of Sensitive Information vulnerability in Samsung Account prior to version 13.2.00.6 allows attacker to access sensitive information via onActivityResult.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：40 | 回复：0
CVE-2022-30733

Sensitive information exposure in Sign-in log in Samsung Account prior to version 13.2.00.6 allows attackers to get an user email or phone number without permission.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：39 | 回复：0
CVE-2022-30734

Sensitive information exposure in Sign-out log in Samsung Account prior to version 13.2.00.6 allows attackers to get an user email or phone number without permission.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：34 | 回复：0
CVE-2022-30735

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the access_token without permission.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：38 | 回复：0
CVE-2022-30736

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：34 | 回复：0
CVE-2022-30737

Implicit Intent hijacking vulnerability in Samsung Account prior to version 13.2.00.6 allows attackers to get email ID.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：32 | 回复：0
CVE-2022-30738

Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address bar via executing script.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：32 | 回复：0
CVE-2022-30739

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get an user email or phone number with a normal level permission.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：32 | 回复：0
CVE-2022-30740

Improper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69 allows physical attackers to guess stored credit card numbers.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：34 | 回复：0
CVE-2022-30741

Sensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7.2.24.12 allows local attackers with log access permission to get sim card information through device l ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：39 | 回复：0
CVE-2022-30742

Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2.24.12 allows local attackers with log access permissio to get sim card information through device log.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：34 | 回复：0
CVE-2022-30743

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：33 | 回复：0
CVE-2022-30744

DLL hijacking vulnerability in KiesWrapper in Samsung Kies prior to version 2.6.4.22043_1 allows attacker to execute arbitrary code.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：31 | 回复：0
CVE-2022-30745

Improper access control vulnerability in Quick Share prior to version 13.1.2.4 allows attacker to access internal files in Quick Share.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：42 | 回复：0
CVE-2022-30746

Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access senstive information remotely using javascript interface API.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：52 | 回复：0
CVE-2022-30747

PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit Intent.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：47 | 回复：0
CVE-2022-30748

Unprotected dynamic receiver in Samsung Members prior to version 4.2.005 allows attacker to launch arbitrary activity.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：44 | 回复：0
CVE-2022-30749

Improper access control vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to add arbitrary smart devices by bypassing login activity.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：44 | 回复：0
CVE-2022-2022

Cross-site Scripting (XSS) - Stored in GitHub repository nocodb/nocodb prior to 0.91.7.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：42 | 回复：0
CVE-2021-35530

A vulnerability in the application authentication and authorization mechanism in Hitachi Energy's TXpert Hub CoreTec 4, that depends on a token validation of the session identifier, allows an unau ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：52 | 回复：0
CVE-2021-35531

Improper Input Validation vulnerability in a particular configuration setting field of Hitachi Energy TXpert Hub CoreTec 4 product, allows an attacker with access to an authorized user with ADMIN or E ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：58 | 回复：0
CVE-2021-35532

A vulnerability exists in the file upload validation part of Hitachi Energy TXpert Hub CoreTec 4 product. The vulnerability allows an attacker or malicious agent who manages to gain access to the syst ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:03 | 阅读：56 | 回复：0