This page lists publicly disclosed CVE vulnerabilities affecting samsung cloud (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-20975 | Improper handling of insufficient permission in Samsung Cloud prior to version 5.6.11 allows local attackers to access specific files in arbitrary path. | [email protected] | 2.1 | 0.01% | 2026-01-09 | 2026-01-15 |
| CVE-2024-20851 | Improper access control vulnerability in Samsung Data Store prior to version 5.3.00.4 allows local attackers to launch arbitrary activity with Samsung Data Store privilege. | [email protected] | 4.4 | 0.07% | 2024-04-02 | 2026-01-12 |
| CVE-2023-42578 | Improper handling of insufficient permissions or privileges vulnerability in Samsung Data Store prior to version 5.2.00.7 allows remote attackers to access location information without permission. | [email protected] | 6.5 | 0.27% | 2023-12-05 | 2024-11-21 |
| CVE-2023-21448 | Path traversal vulnerability in Samsung Cloud prior to version 5.3.0.32 allows attacker to access specific png file. | [email protected] | 5.7 | 0.14% | 2023-02-09 | 2024-11-21 |
| CVE-2023-21447 | Improper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local attackers to access information with Samsung Cloud's privilege via implicit intent. | [email protected] | 4.0 | 0.05% | 2023-02-09 | 2024-11-21 |
| CVE-2022-33713 | Implicit Intent hijacking vulnerability in Samsung Cloud prior to version 5.2.0 allows attacker to get sensitive information. | [email protected] | 7.5 | 0.26% | 2022-07-12 | 2024-11-21 |
| CVE-2022-24932 | Improper Protection of Alternate Path vulnerability in Setup wizard process prior to SMR Mar-2022 Release 1 allows physical attacker package installation before finishing Setup wizard. | [email protected] | 4.2 | 0.02% | 2022-03-10 | 2024-11-21 |
| CVE-2021-25368 | Hijacking vulnerability in Samsung Cloud prior to version 4.7.0.3 allows attackers to intercept when the provider is executed. | [email protected] | 3.3 | 0.14% | 2021-03-25 | 2024-11-21 |