Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2014-9266 | 1 Samsung | 1 Smart Viewer | 2024-02-04 | 6.8 MEDIUM | N/A |
The STWConfig ActiveX control in Samsung SmartViewer does not properly initialize a variable, which allows remote attackers to execute arbitrary code via unspecified vectors. | |||||
CVE-2013-3586 | 1 Samsung | 2 Dvr, Smart Viewer | 2024-02-04 | 7.6 HIGH | N/A |
Samsung Web Viewer for Samsung DVR devices allows remote attackers to bypass authentication via an arbitrary SessionID value in a cookie. | |||||
CVE-2013-3585 | 1 Samsung | 2 Dvr, Smart Viewer | 2024-02-04 | 5.0 MEDIUM | N/A |
Samsung Web Viewer for Samsung DVR devices stores credentials in cleartext, which allows context-dependent attackers to obtain sensitive information via vectors involving (1) direct access to a file or (2) the user-setup web page. |