cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-49405,https://securityvulnerability.io/vulnerability/CVE-2024-49405,Samsung Pass Vulnerability Allows Physical Attackers to Access Sensitive Information,Improper authentication in Private Info in Samsung Pass in prior to version 4.4.04.7 allows physical attackers to access sensitive information in a specific scenario.,Samsung,Samsung Pass,4.6,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2024-11-06T02:17:23.333Z,0
CVE-2023-42576,https://securityvulnerability.io/vulnerability/CVE-2023-42576,Improper Authentication in Samsung Pass Affects User Security,"An improper authentication vulnerability exists in Samsung Pass versions prior to 4.3.00.17. This flaw allows physical attackers to bypass authentication protocols by exploiting an invalid exception handler. As a result, unauthorized individuals may gain access to sensitive user data. It is vital for users to update their applications to the latest version to mitigate this security risk.",Samsung,Samsung Pass,5.4,MEDIUM,0.0005300000193528831,false,,false,false,false,,,false,false,,2023-12-05T03:15:00.000Z,0
CVE-2023-42575,https://securityvulnerability.io/vulnerability/CVE-2023-42575,Improper Authentication in Samsung Pass Affects User Security,An improper authentication vulnerability in Samsung Pass allows physical attackers to bypass security measures due to an invalid flag setting in versions prior to 4.3.00.17. This flaw poses a significant risk to user data as unauthorized individuals may gain access to sensitive information. Users are advised to update their Samsung Pass to the latest version to mitigate this vulnerability.,Samsung,Samsung Pass,5.4,MEDIUM,0.0005300000193528831,false,,false,false,false,,,false,false,,2023-12-05T03:15:00.000Z,0
CVE-2023-42554,https://securityvulnerability.io/vulnerability/CVE-2023-42554,Improper Authentication in Samsung Pass Affects Security Measures,"An improper authentication vulnerability exists in Samsung Pass, allowing physical attackers to bypass the authentication mechanism. This flaw affects versions of the software prior to 4.3.00.17, potentially exposing user data and increasing the risk of unauthorized access. It emphasizes the importance of updating to the latest version to mitigate security risks.",Samsung,Samsung Pass,6.8,MEDIUM,0.0005300000193528831,false,,false,false,false,,,false,false,,2023-11-07T08:15:00.000Z,0
CVE-2023-30676,https://securityvulnerability.io/vulnerability/CVE-2023-30676,Improper Access Control in Samsung Pass Affects User Data Security,"An improper access control vulnerability has been identified in Samsung Pass that allows physical attackers to obtain sensitive data. This security flaw exists in versions prior to 4.2.03.1, exposing users to potential unauthorized access. It is crucial for users of Samsung Pass to ensure their application is updated to mitigate risks associated with this vulnerability.",Samsung,Samsung Pass,4.6,MEDIUM,0.0005699999746866524,false,,false,false,false,,,false,false,,2023-07-06T03:15:00.000Z,0
CVE-2023-30675,https://securityvulnerability.io/vulnerability/CVE-2023-30675,Improper Authentication in Samsung Pass Affects User Account Data,"An improper authentication vulnerability in Samsung Pass prior to version 4.2.03.1 allows a local attacker to access sensitive stored account information, particularly when the Samsung Wallet application is not installed. This security flaw can potentially lead to unauthorized access to personal user data, posing significant risks to users relying on this application for secure account management.",Samsung,Samsung Pass,6.2,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-07-06T03:15:00.000Z,0
CVE-2023-30677,https://securityvulnerability.io/vulnerability/CVE-2023-30677,Improper Access Control in Samsung Pass Affects User Data Security,"Samsung Pass has been identified with an improper access control vulnerability that enables physical attackers to gain unauthorized access to sensitive user data on an unlocked device. This security flaw affects all versions prior to 4.2.03.1 and poses a significant risk to user privacy, especially in scenarios where devices are left unattended. It is crucial for users to update to the latest version to mitigate potential data exposure.",Samsung,Samsung Pass,6.1,MEDIUM,0.0005699999746866524,false,,false,false,false,,,false,false,,2023-07-06T03:15:00.000Z,0
CVE-2022-39911,https://securityvulnerability.io/vulnerability/CVE-2022-39911,Improper Condition Handling in Samsung Pass by Samsung,"An improper check or handling of exceptional conditions in Samsung Pass prior to version 4.0.06.1 permits unauthorized access to sensitive user data. Attackers exploiting this vulnerability can bypass intended access controls, thereby endangering user security and privacy.",Samsung,Samsung Pass,4.8,MEDIUM,0.0005799999926239252,false,,false,false,false,,,false,false,,2022-12-08T00:00:00.000Z,0
CVE-2022-39910,https://securityvulnerability.io/vulnerability/CVE-2022-39910,Improper Access Control in Samsung Pass by Samsung,"An improper access control vulnerability in Samsung Pass prior to version 4.0.06.7 allows physical attackers to gain unauthorized access to sensitive data stored within the application on an unlocked device. The flaw can be exploited during a specific state involving a pop-up view, posing a significant security risk to users who may inadvertently expose confidential information.",Samsung,Samsung Pass,3.9,LOW,0.0005699999746866524,false,,false,false,false,,,false,false,,2022-12-08T00:00:00.000Z,0
CVE-2022-39892,https://securityvulnerability.io/vulnerability/CVE-2022-39892,Improper Access Control in Samsung Pass Affects Samsung Products,"An improper access control vulnerability exists in Samsung Pass prior to version 4.0.05.1, allowing attackers to gain unauthorized access without authentication. This vulnerability can be exploited through the 'keep open' feature, potentially leading to unauthorized exposure of sensitive user data.",Samsung,Samsung Pass,3.6,LOW,0.002090000081807375,false,,false,false,false,,,false,false,,2022-11-09T00:00:00.000Z,0
CVE-2022-36851,https://securityvulnerability.io/vulnerability/CVE-2022-36851,Improper Access Control in Samsung Pass Affects User Data Security,"An improper access control vulnerability exists in Samsung Pass, prior to version 4.0.03.1, which can be exploited by physical attackers. This flaw allows unauthorized access to sensitive data stored in Samsung Pass when the device is in a specific unlocked state. Users utilizing affected versions are at an increased risk of data exposure, highlighting the importance of updating to the latest version to maintain security and protect personal information.",Samsung,Samsung Pass,3.9,LOW,0.0005699999746866524,false,,false,false,false,,,false,false,,2022-09-09T14:40:05.000Z,0
CVE-2022-36876,https://securityvulnerability.io/vulnerability/CVE-2022-36876,Improper Authorization Vulnerability in Samsung Pass,An improper authorization vulnerability exists in the UPI payment feature of Samsung Pass prior to version 4.0.04.10. This flaw potentially allows physical attackers to bypass authentication measures and gain access to the user's account list. Users of affected versions are advised to update their software promptly to mitigate risks associated with unauthorized access.,Samsung,Samsung Pass,1.8,LOW,0.0004799999878741801,false,,false,false,false,,,false,false,,2022-09-09T14:39:58.000Z,0
CVE-2022-30730,https://securityvulnerability.io/vulnerability/CVE-2022-30730,Improper Authorization in Samsung Pass Affects User Security,"A vulnerability in Samsung Pass allows physical attackers to gain unauthorized access to the account list without any authentication. This flaw impacts the security of user accounts, potentially exposing sensitive information to attackers who have physical access to a device running affected versions of Samsung Pass.",Samsung,Samsung Pass,4.6,MEDIUM,0.0005799999926239252,false,,false,false,false,,,false,false,,2022-06-07T18:04:57.000Z,0
CVE-2022-27841,https://securityvulnerability.io/vulnerability/CVE-2022-27841,Improper Exception Handling in Samsung Pass by Samsung,"Samsung Pass contains a flaw due to improper exception handling, allowing a physical attacker to potentially access screens that were previously active without authentication. This vulnerability raises significant concerns about user data security and device protection.",Samsung,Samsung Pass,4.3,MEDIUM,0.0006099999882280827,false,,false,false,false,,,false,false,,2022-04-11T19:37:33.000Z,0
CVE-2021-25505,https://securityvulnerability.io/vulnerability/CVE-2021-25505,Improper Authentication in Samsung Pass by Samsung,"An improper authentication issue exists in Samsung Pass, allowing unauthorized usage of the app when the device's lockscreen is unlocked. Users may face security risks as this vulnerability permits access without appropriate authentication measures in place, potentially exposing sensitive information stored within the application.",Samsung,Samsung Pass,3.3,LOW,0.0005799999926239252,false,,false,false,false,,,false,false,,2021-11-05T02:03:51.000Z,0