FactoryCamera
CVEs (7)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-21015 | Med | 0.36 | 5.5 | 0.00 | May 13, 2026 | Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier. | ||
| CVE-2022-39857 | 0.00 | — | 0.00 | Oct 7, 2022 | Improper access control vulnerability in CameraTestActivity in FactoryCameraFB prior to version 3.5.51 allows attackers to access broadcasting Intent as system uid privilege. | |||
| CVE-2022-39861 | 0.00 | — | 0.00 | Oct 7, 2022 | Unprotected Receiver in AtBroadcastReceiver in FactoryCamera prior to version 3.5.51 allows attackers to record video without camera privilege. | |||
| CVE-2022-39858 | 0.00 | — | 0.00 | Oct 7, 2022 | Path traversal vulnerability in AtBroadcastReceiver in FactoryCamera prior to version 3.5.51 allows attackers to write arbitrary file as FactoryCamera privilege. | |||
| CVE-2022-27838 | 0.00 | — | 0.00 | Apr 11, 2022 | Improper access control vulnerability in FactoryCamera prior to version 2.1.96 allows attacker to access the file with system privilege. | |||
| CVE-2021-25440 | 0.00 | — | 0.00 | Jul 8, 2021 | Improper access control vulnerability in FactoryCameraFB prior to version 3.4.74 allows untrusted applications to access arbitrary files with an escalated privilege. | |||
| CVE-2020-15578 | 0.00 | — | 0.00 | Jul 7, 2020 | An issue was discovered on Samsung mobile devices with O(8.x) software. FactoryCamera does not properly restrict runtime permissions. The Samsung ID is SVE-2020-17270 (July 2020). |
- risk 0.36cvss 5.5epss 0.00
Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier.
- CVE-2022-39857Oct 7, 2022risk 0.00cvss —epss 0.00
Improper access control vulnerability in CameraTestActivity in FactoryCameraFB prior to version 3.5.51 allows attackers to access broadcasting Intent as system uid privilege.
- CVE-2022-39861Oct 7, 2022risk 0.00cvss —epss 0.00
Unprotected Receiver in AtBroadcastReceiver in FactoryCamera prior to version 3.5.51 allows attackers to record video without camera privilege.
- CVE-2022-39858Oct 7, 2022risk 0.00cvss —epss 0.00
Path traversal vulnerability in AtBroadcastReceiver in FactoryCamera prior to version 3.5.51 allows attackers to write arbitrary file as FactoryCamera privilege.
- CVE-2022-27838Apr 11, 2022risk 0.00cvss —epss 0.00
Improper access control vulnerability in FactoryCamera prior to version 2.1.96 allows attacker to access the file with system privilege.
- CVE-2021-25440Jul 8, 2021risk 0.00cvss —epss 0.00
Improper access control vulnerability in FactoryCameraFB prior to version 3.4.74 allows untrusted applications to access arbitrary files with an escalated privilege.
- CVE-2020-15578Jul 7, 2020risk 0.00cvss —epss 0.00
An issue was discovered on Samsung mobile devices with O(8.x) software. FactoryCamera does not properly restrict runtime permissions. The Samsung ID is SVE-2020-17270 (July 2020).