Every CVE whose affected-product data names Samsung Pass, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2023-30675 — CVSS 6.2 (medium): Improper authentication in Samsung Pass prior to version 4.2.03.1 allows local attacker to access stored account information when Samsung…
CVE-2023-30677 — CVSS 6.1 (medium): Improper access control vulnerability in Samsung Pass prior to version 4.2.03.1 allows physical attackers to access data of Samsung Pass on…
CVE-2023-42576 — CVSS 5.4 (medium): Improper Authentication vulnerability in Samsung Pass prior to version 4.3.00.17 allows physical attackers to bypass authentication due to…
CVE-2023-42575 — CVSS 5.4 (medium): Improper Authentication vulnerability in Samsung Pass prior to version 4.3.00.17 allows physical attackers to bypass authentication due to…
CVE-2023-42554 — CVSS 5.4 (medium): Improper Authentication vulnerabiity in Samsung Pass prior to version 4.3.00.17 allows physical attackers to bypass authentication.
CVE-2024-49405 — CVSS 5.3 (medium): Improper authentication in Private Info in Samsung Pass in prior to version 4.4.04.7 allows physical attackers to access sensitive…
CVE-2022-39911 — CVSS 4.8 (medium): Improper check or handling of exceptional conditions vulnerability in Samsung Pass prior to version 4.0.06.1 allows attacker to access…
CVE-2023-30676 — CVSS 4.6 (medium): Improper access control vulnerability in Samsung Pass prior to version 4.2.03.1 allows physical attackers to access data of Samsung Pass.
CVE-2022-39910 — CVSS 3.9 (low): Improper access control vulnerability in Samsung Pass prior to version 4.0.06.7 allow physical attackers to access data of Samsung Pass on…
CVE-2022-39892 — CVSS 3.6 (low): Improper access control in Samsung Pass prior to version 4.0.05.1 allows attackers to unauthenticated access via keep open feature.