Antonio Arlia Ciombo

#10999of 53,633
25Total CVSS
Vulnerabilities · 5
Low
2
Medium
2
High
1
PT-2021-16636
5.3
2021-08-05
Samsung · Smartthings · CVE-2021-25446
Name of the Vulnerable Software and Affected Versions: SmartThings versions prior to 1.7.67.25 Description: The issue is related to improper access control, allowing untrusted applications to cause arbitrary webpage loading in webview. Recommendations: For versions prior to 1.7.67.25, update to version 1.7.67.25 or later to resolve the issue.
PT-2021-16637
5.3
2021-08-05
Samsung · Smartthings · CVE-2021-25447
Name of the Vulnerable Software and Affected Versions: SmartThings versions prior to 1.7.67.25 Description: The issue is related to improper access control, allowing untrusted applications to cause local file inclusion in webview. Recommendations: For versions prior to 1.7.67.25, update to version 1.7.67.25 or later to resolve the issue.
PT-2021-16623
3.3
2021-07-08
Samsung · Samsung Members · CVE-2021-25432
Name of the Vulnerable Software and Affected Versions: Samsung Members versions prior to 2.4.85.11 in Android O(8.1) and below Samsung Members versions prior to 3.9.10.11 in Android P(9.0) and above Description: The issue allows untrusted applications to access chat data, potentially exposing sensitive information. Recommendations: For Samsung Members versions prior to 2.4.85.11 in Android O(8.1) and below, update to version 2.4.85.11 or later. For Samsung Members versions prior to 3.9.10.11 in Android P(9.0) and above, update to version 3.9.10.11 or later.
PT-2021-16629
7.8
2021-07-08
Samsung · Samsung Members · CVE-2021-25438
Name of the Vulnerable Software and Affected Versions: Samsung Members versions prior to 2.4.85.11 in Android O(8.1) and below Samsung Members versions prior to 3.9.10.11 in Android P(9.0) and above Description: The issue is related to improper access control, allowing untrusted applications to cause local file inclusion in webview. This could potentially lead to unauthorized access to sensitive data. Recommendations: For Samsung Members versions prior to 2.4.85.11 in Android O(8.1) and below, update to version 2.4.85.11 or later. For Samsung Members versions prior to 3.9.10.11 in Android P(9.0) and above, update to version 3.9.10.11 or later. As a temporary workaround, consider restricting access to the webview component in Samsung Members to minimize the risk of exploitation.
PT-2021-16630
3.3
2021-07-08
Samsung · Samsung Members · CVE-2021-25439
Name of the Vulnerable Software and Affected Versions: Samsung Members versions prior to 2.4.85.11 in Android O(8.1) and below Samsung Members versions prior to 3.9.10.11 in Android P(9.0) and above Description: The issue is related to improper access control in Samsung Members, allowing untrusted applications to cause arbitrary webpage loading in webview. This can potentially lead to security risks. Recommendations: For Samsung Members versions prior to 2.4.85.11 in Android O(8.1) and below, update to version 2.4.85.11 or later. For Samsung Members versions prior to 3.9.10.11 in Android P(9.0) and above, update to version 3.9.10.11 or later. As a temporary workaround, consider restricting access to the webview component in Samsung Members until a patch is available.