Dialer
CVEs (7)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-20983 | 0.00 | — | 0.00 | Feb 4, 2026 | Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Samsung Dialer privilege. | |||
| CVE-2024-20885 | 0.00 | — | 0.00 | Jun 4, 2024 | Improper component protection vulnerability in Samsung Dialer prior to SMR May-2024 Release 1 allows local attackers to make a call without proper permission. | |||
| CVE-2023-40631 | 0.00 | — | 0.00 | Oct 8, 2023 | In Dialer, there is a possible missing permission check. This could lead to local information disclosure with System execution privileges needed | |||
| CVE-2022-33724 | 0.00 | — | 0.00 | Aug 5, 2022 | Exposure of Sensitive Information in Samsung Dialer application?prior to SMR Aug-2022 Release 1 allows local attackers to access ICCID via log. | |||
| CVE-2021-39790 | 0.00 | — | 0.00 | Mar 30, 2022 | In Dialer, there is a possible way to manipulate visual voicemail settings due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:… | |||
| CVE-2022-22270 | 0.00 | — | 0.00 | Jan 7, 2022 | An implicit Intent hijacking vulnerability in Dialer prior to SMR Jan-2022 Release 1 allows unprivileged applications to access contact information. | |||
| CVE-2021-25523 | 0.00 | — | 0.00 | Dec 8, 2021 | Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows attacker to get Samsung Account ID. |
- CVE-2026-20983Feb 4, 2026risk 0.00cvss —epss 0.00
Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Samsung Dialer privilege.
- CVE-2024-20885Jun 4, 2024risk 0.00cvss —epss 0.00
Improper component protection vulnerability in Samsung Dialer prior to SMR May-2024 Release 1 allows local attackers to make a call without proper permission.
- CVE-2023-40631Oct 8, 2023risk 0.00cvss —epss 0.00
In Dialer, there is a possible missing permission check. This could lead to local information disclosure with System execution privileges needed
- CVE-2022-33724Aug 5, 2022risk 0.00cvss —epss 0.00
Exposure of Sensitive Information in Samsung Dialer application?prior to SMR Aug-2022 Release 1 allows local attackers to access ICCID via log.
- CVE-2021-39790Mar 30, 2022risk 0.00cvss —epss 0.00
In Dialer, there is a possible way to manipulate visual voicemail settings due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:…
- CVE-2022-22270Jan 7, 2022risk 0.00cvss —epss 0.00
An implicit Intent hijacking vulnerability in Dialer prior to SMR Jan-2022 Release 1 allows unprivileged applications to access contact information.
- CVE-2021-25523Dec 8, 2021risk 0.00cvss —epss 0.00
Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows attacker to get Samsung Account ID.