Samsung Cloud
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-20975 | 0.00 | — | 0.00 | Jan 9, 2026 | Improper handling of insufficient permission in Samsung Cloud prior to version 5.6.11 allows local attackers to access specific files in arbitrary path. | |||
| CVE-2023-21448 | 0.00 | — | 0.00 | Feb 9, 2023 | Path traversal vulnerability in Samsung Cloud prior to version 5.3.0.32 allows attacker to access specific png file. | |||
| CVE-2023-21447 | 0.00 | — | 0.00 | Feb 9, 2023 | Improper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local attackers to access information with Samsung Cloud's privilege via implicit intent. | |||
| CVE-2022-33713 | 0.00 | — | 0.01 | Jul 11, 2022 | Implicit Intent hijacking vulnerability in Samsung Cloud prior to version 5.2.0 allows attacker to get sensitive information. | |||
| CVE-2021-25368 | 0.00 | — | 0.01 | Mar 25, 2021 | Hijacking vulnerability in Samsung Cloud prior to version 4.7.0.3 allows attackers to intercept when the provider is executed. |
- CVE-2026-20975Jan 9, 2026risk 0.00cvss —epss 0.00
Improper handling of insufficient permission in Samsung Cloud prior to version 5.6.11 allows local attackers to access specific files in arbitrary path.
- CVE-2023-21448Feb 9, 2023risk 0.00cvss —epss 0.00
Path traversal vulnerability in Samsung Cloud prior to version 5.3.0.32 allows attacker to access specific png file.
- CVE-2023-21447Feb 9, 2023risk 0.00cvss —epss 0.00
Improper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local attackers to access information with Samsung Cloud's privilege via implicit intent.
- CVE-2022-33713Jul 11, 2022risk 0.00cvss —epss 0.01
Implicit Intent hijacking vulnerability in Samsung Cloud prior to version 5.2.0 allows attacker to get sensitive information.
- CVE-2021-25368Mar 25, 2021risk 0.00cvss —epss 0.01
Hijacking vulnerability in Samsung Cloud prior to version 4.7.0.3 allows attackers to intercept when the provider is executed.