CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2022-39845
https://notcve.org/view.php?id=CVE-2022-39845
Improper validation of integrity check vulnerability in Samsung Kies prior to version 2.6.4.22074 allows local attackers to delete arbitrary directory using directory junction. Una vulnerabilidad de comprobación inapropiada de la comprobación de integridad en Samsung Kies versiones anteriores a 2.6.4.22074, permite a atacantes locales eliminar un directorio arbitrario usando la unión de directorios • https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=09 • CWE-354: Improper Validation of Integrity Check Value •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-30744
https://notcve.org/view.php?id=CVE-2022-30744
DLL hijacking vulnerability in KiesWrapper in Samsung Kies prior to version 2.6.4.22043_1 allows attacker to execute arbitrary code. Una vulnerabilidad de secuestro de DLL en KiesWrapper en Samsung Kies versiones anteriores a 2.6.4.22043_1, permite a un atacante ejecutar código arbitrario • https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=6 • CWE-20: Improper Input Validation CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-27843
https://notcve.org/view.php?id=CVE-2022-27843
DLL hijacking vulnerability in Kies prior to version 2.6.4.22014_2 allows attacker to execute abitrary code. Una vulnerabilidad de secuestro de DLL en Kies versiones anteriores a 2.6.4.22014_2, que permite a un atacante ejecutar código abitrario • https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=4 • CWE-20: Improper Input Validation CWE-427: Uncontrolled Search Path Element •
CVSS: 6.9EPSS: 0%CPEs: 1EXPL: 1CVE-2015-8780
https://notcve.org/view.php?id=CVE-2015-8780
Samsung wssyncmlnps before 2015-10-31 allows directory traversal in a Kies restore, aka ZipFury. Samsung wssyncmlnps en versiones anteriores a 2015-10-31 permite el recorrido de directorio en una restauración de Kies, aka ZipFury. • https://github.com/ud2/advisories/tree/master/android/samsung/nocve-2015-0001 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: 45%CPEs: 1EXPL: 4CVE-2012-6429 – Samsung Kies - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2012-6429
Buffer overflow in the PrepareSync method in the SyncService.dll ActiveX control in Samsung Kies before 2.5.1.12123_2_7 allows remote attackers to execute arbitrary code via a long string to the password argument. Desbordamiento de buffer en el método PrepareSync en el control SyncService.dll ActiveX en Samsung Kies anterior a 2.5.1.12123_2_7 permite a atacantes remotos ejecutar código arbitrario a través de una cadena larga hacia el argumento de contraseña. • https://www.exploit-db.com/exploits/38206 http://archives.neohapsis.com/archives/bugtraq/2013-01/0036.html http://osvdb.org/89118 http://packetstormsecurity.com/files/119423/Samsung-Kies-2.5.0.12114_1-Buffer-Overflow.html http://www.securityfocus.com/bid/57249 https://exchange.xforce.ibmcloud.com/vulnerabilities/81160 https://www.htbridge.com/advisory/HTB23136 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •