This page lists publicly disclosed CVE vulnerabilities affecting samsung account (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-20994 | URL redirection in Samsung Account prior to version 15.5.01.1 allows local attackers to potentially get access token. | [email protected] | 6.9 | 0.12% | 2026-03-16 | 2026-06-17 |
| CVE-2025-58487 | Improper authorization in Samsung Account prior to version 15.5.01.1 allows local attacker to launch arbitrary activity with Samsung Account privilege. | [email protected] | 4.0 | 0.13% | 2025-12-01 | 2026-06-17 |
| CVE-2025-58486 | Improper input validation in Samsung Account prior to version 15.5.01.1 allows local attacker to execute arbitrary script. | [email protected] | 4.0 | 0.14% | 2025-12-01 | 2026-06-17 |
| CVE-2025-21076 | Improper handling of insufficient permissions or privileges in Samsung Account prior to version 15.5.00.18 allows local attackers to access data in Samsung Account. User interaction is required for triggering this vulnerability. | [email protected] | 5.5 | 0.11% | 2025-11-05 | 2026-06-17 |
| CVE-2023-21481 | Improper URL input validation vulnerability in Samsung Account application prior to version 14.1.0.0 allows remote attackers to get sensitive information. | [email protected] | 5.4 | 0.27% | 2025-09-03 | 2026-06-17 |
| CVE-2024-20841 | Improper Handling of Insufficient Privileges in Samsung Account prior to version 14.8.00.3 allows local attackers to access data. | [email protected] | 5.1 | 0.17% | 2024-03-05 | 2026-06-17 |
| CVE-2023-42551 | Use of implicit intent for sensitive communication vulnerability in startTncActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | [email protected] | 5.5 | 0.39% | 2023-11-07 | 2026-06-17 |
| CVE-2023-42550 | Use of implicit intent for sensitive communication vulnerability in startSignIn in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | [email protected] | 5.5 | 0.39% | 2023-11-07 | 2026-06-17 |
| CVE-2023-42549 | Use of implicit intent for sensitive communication vulnerability in startNameValidationActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | [email protected] | 5.5 | 0.39% | 2023-11-07 | 2026-06-17 |
| CVE-2023-42548 | Use of implicit intent for sensitive communication vulnerability in startMandatoryCheckActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | [email protected] | 5.5 | 0.39% | 2023-11-07 | 2026-06-17 |
| CVE-2023-42547 | Use of implicit intent for sensitive communication vulnerability in startEmailValidationActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | [email protected] | 5.5 | 0.39% | 2023-11-07 | 2026-06-17 |
| CVE-2023-42546 | Use of implicit intent for sensitive communication vulnerability in startAgreeToDisclaimerActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege. | [email protected] | 5.5 | 0.39% | 2023-11-07 | 2026-06-17 |
| CVE-2023-42540 | Improper access control vulnerability in Samsung Account prior to version 14.5.01.1 allows attackers to access sensitive information via implicit intent. | [email protected] | 4.0 | 0.19% | 2023-11-07 | 2026-06-17 |
| CVE-2022-39875 | Improper component protection vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout. | [email protected] | 5.1 | 0.15% | 2022-10-07 | 2026-06-17 |
| CVE-2022-39874 | Sensitive log information leakage vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout. | [email protected] | 4.0 | 0.18% | 2022-10-07 | 2026-06-17 |
| CVE-2022-39863 | Intent redirection vulnerability in Samsung Account prior to version 13.5.01.3 allows attackers to access content providers without permission. | [email protected] | 3.6 | 0.34% | 2022-10-07 | 2026-06-17 |
| CVE-2022-30743 | Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission. | [email protected] | 5.3 | 0.38% | 2022-06-07 | 2026-06-17 |
| CVE-2022-30739 | Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get an user email or phone number with a normal level permission. | [email protected] | 4.0 | 0.36% | 2022-06-07 | 2026-06-17 |
| CVE-2022-30737 | Implicit Intent hijacking vulnerability in Samsung Account prior to version 13.2.00.6 allows attackers to get email ID. | [email protected] | 4.0 | 0.49% | 2022-06-07 | 2026-06-17 |
| CVE-2022-30736 | Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission. | [email protected] | 5.3 | 0.38% | 2022-06-07 | 2026-06-17 |