Samsung Security Vulnerabilities (CVEs)
Track 414 security vulnerabilities affecting Samsung products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability allows attackers within Bluetooth range to connect to a Samsung device's mobile hotspot without authentication. It affects Samsung ...
Feb 6, 2024This vulnerability in Samsung Galaxy Store allows attackers to bypass URL validation in MCSLaunch deeplinks, enabling them to execute JavaScript APIs ...
Dec 5, 2023This vulnerability in Samsung's Find My Mobile service allows a physical attacker to remotely unlock a lost device by resetting the Samsung Account pa...
Dec 5, 2023This vulnerability allows local attackers with shell privileges to execute arbitrary code on Samsung devices due to improper input validation in the S...
Dec 5, 2023This vulnerability allows attackers to execute arbitrary code or cause denial of service through a stack-based buffer overflow in Samsung's softsimd c...
Dec 5, 2023This vulnerability allows attackers to write data beyond the allocated heap buffer in Samsung's libsavsac.so library, potentially leading to arbitrary...
Dec 5, 2023A buffer overflow vulnerability in Samsung Exynos processors allows attackers to cause abnormal termination (crash) of mobile devices by sending speci...
Nov 8, 2023This vulnerability in libsaped allows local attackers to trigger out-of-bounds read and write operations through improper input validation in the get_...
Nov 7, 2023This vulnerability allows a local attacker to write data beyond allocated memory boundaries in the read_block function of vold (Android volume daemon)...
Nov 7, 2023A stack-based buffer overflow vulnerability in Samsung's HDCP trustlet allows local privileged attackers to execute arbitrary code. This affects Samsu...
Oct 4, 2023This vulnerability allows local attackers to execute privileged activities on Samsung devices due to improper input validation in the Duo component. I...
Oct 4, 2023This vulnerability in Samsung Email allows attackers to perform man-in-the-middle attacks by exploiting improper certificate validation. Attackers can...
Sep 6, 2023This vulnerability allows local attackers to launch activities with system privileges on Samsung devices with Dual Messenger enabled. It affects Samsu...
Sep 6, 2023This vulnerability in Samsung Exynos processors allows attackers to trigger an infinite loop by exploiting improper handling of PPP length parameter i...
Aug 28, 2023This vulnerability allows remote attackers to execute arbitrary code on affected Samsung devices through an out-of-bounds write in the libsimba librar...
Aug 10, 2023This vulnerability allows a local attacker to escalate privileges on Samsung devices due to a parcel mismatch in AuthenticationConfig. It affects Sams...
Aug 10, 2023This vulnerability allows local attackers to bypass access controls in Samsung's HDCP trustlet, enabling arbitrary code execution on affected devices....
Aug 10, 2023This vulnerability allows local attackers to bypass input validation in Samsung's RegisteredMSISDN component, enabling them to execute privileged acti...
Jul 6, 2023This CVE describes a heap out-of-bounds write vulnerability in Samsung's RILD (Radio Interface Layer Daemon) component that handles USIM phonebook cap...
Jul 6, 2023This vulnerability allows attackers to execute arbitrary code on Samsung mobile devices by exploiting a heap out-of-bounds write in the RILD component...
Jul 6, 2023This vulnerability allows local attackers to bypass input validation in SCEPProfile on Samsung devices, enabling them to execute privileged activities...
Jul 6, 2023This vulnerability allows local attackers to bypass security restrictions and execute privileged activities on Samsung devices due to improper input v...
Jul 6, 2023A missing authentication vulnerability in Samsung Galaxy Themes Service allows local attackers to delete arbitrary non-preloaded applications. This af...
Jul 6, 2023This vulnerability allows attackers to write beyond heap memory boundaries in Samsung's RILD (Radio Interface Layer Daemon) component, potentially lea...
Jul 6, 2023This is a heap out-of-bounds write vulnerability in Samsung Exynos baseband firmware that allows remote attackers to execute arbitrary code. It affect...
Jun 28, 2023This vulnerability in Samsung Exynos modem chips allows a crafted application to improperly query SIM card status information. It affects devices usin...
Jun 7, 2023This vulnerability in Samsung Exynos modem chips allows malicious applications to query RCS (Rich Communication Services) capabilities without proper ...
Jun 7, 2023This vulnerability in Samsung Galaxy Store allows attackers to bypass scheme validation in InstantPlay Deeplink functionality, enabling them to execut...
May 26, 2023A cross-site scripting (XSS) vulnerability in Samsung Galaxy Store's InstantPlay feature allows attackers to execute JavaScript that can trigger APK i...
May 26, 2023This vulnerability allows local attackers to write arbitrary files with system privileges due to improper access control in Samsung's ThemeManager. It...
May 4, 2023This vulnerability allows local attackers to execute arbitrary code on affected Samsung devices by exploiting an out-of-bounds write in the mPOS TUI t...
May 4, 2023This vulnerability allows local attackers to execute arbitrary code on Samsung mobile point-of-sale (mPOS) devices due to improper input validation in...
May 4, 2023A heap out-of-bounds write vulnerability in Samsung device bootloaders allows physical attackers to execute arbitrary code during the boot process. Th...
May 4, 2023This vulnerability allows memory corruption in Samsung baseband chipsets due to improper parameter length checking while parsing SDP fmtp attributes. ...
Mar 23, 2023This vulnerability in Samsung baseband chipsets allows memory corruption when processing Session Description Negotiation for Video Configuration Attri...
Mar 21, 2023A path traversal vulnerability in Samsung Galaxy Themes Service allows attackers to access arbitrary files with system-level privileges. This affects ...
Mar 16, 2023This vulnerability allows remote attackers to execute arbitrary code on affected Samsung mobile devices via a crafted 5G network message. It affects S...
Mar 13, 2023A heap-based buffer overflow vulnerability in Samsung's 5G MM message codec allows remote code execution on affected mobile devices. Attackers can exp...
Mar 13, 2023This vulnerability allows remote attackers to execute arbitrary code on affected Samsung mobile devices via a heap-based buffer overflow in the 5G mod...
Mar 13, 2023This vulnerability allows attackers to launch unauthorized activities on Samsung devices due to improper input validation in the UwbDataTxStatusEvent ...
Feb 9, 2023This vulnerability allows a local attacker to bypass file protection mechanisms in Samsung Android devices by exploiting insufficient verification of ...
Feb 9, 2023This vulnerability in Samsung Flow for Android allows attackers on the same network to decrypt encrypted messages or inject malicious commands due to ...
Feb 9, 2023This vulnerability allows local attackers to bypass Galaxy Store's access controls and install applications without proper authorization. It affects S...
Feb 9, 2023This vulnerability allows local attackers to launch activities with Galaxy Store privileges due to improper input validation in AppsPackageInstaller. ...
Jul 12, 2022This vulnerability allows local attackers to launch activities with Galaxy Store privileges through improper input validation in BillingPackageInstall...
Jul 12, 2022This CVE describes an implicit intent hijacking vulnerability in Samsung Cloud that allows attackers to intercept sensitive information. The vulnerabi...
Jul 12, 2022This vulnerability in Samsung SmartThings allows attackers to remotely access sensitive information through a missing caller check in the JavaScript i...
Jun 7, 2022This vulnerability allows attackers to bypass access controls in Samsung's FactoryCamera app, enabling unauthorized access to files with system-level ...
Apr 11, 2022This vulnerability in Samsung Galaxy Store allows remote attackers to install unauthorized apps by bypassing authorization checks. It affects Samsung ...
Jan 10, 2022This vulnerability in Samsung SCX-6x55X printers allows unauthenticated attackers to access SMB user credentials stored in cleartext by viewing HTML s...
Dec 20, 2021Why Monitor Samsung Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 414+ known vulnerabilities affecting Samsung products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Samsung packages in under 60 seconds. No agents required - completely agentless scanning that works across Samsung deployments.
Free vulnerability database: Access detailed information about every Samsung CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Samsung CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
