VYPR

Web Viewer

by Samsung Mobile

CVEs (5)

  • CVE-2015-8279HigJan 15, 2016
    risk 0.63cvss 8.6epss 0.51

    Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to read arbitrary files via a request to an unspecified PHP script.

  • CVE-2015-8281HigJan 15, 2016
    risk 0.49cvss 7.5epss 0.04

    Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem encryption via XOR calculations.

  • CVE-2015-8280HigJan 15, 2016
    risk 0.49cvss 7.5epss 0.06

    Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials by reading detailed error messages.

  • CVE-2013-3585Aug 28, 2013
    risk 0.05cvss epss 0.24

    Samsung Web Viewer for Samsung DVR devices stores credentials in cleartext, which allows context-dependent attackers to obtain sensitive information via vectors involving (1) direct access to a file or (2) the user-setup web page.

  • CVE-2013-3586Aug 28, 2013
    risk 0.04cvss epss 0.12

    Samsung Web Viewer for Samsung DVR devices allows remote attackers to bypass authentication via an arbitrary SessionID value in a cookie.