Samsung Internet

29 CVEs affecting Samsung Internet. Latest disclosed: 2026-06-05. Critical: 0, High: 2.

Top CVEs affecting Samsung Internet
CVESeverityScorePublishedSummary
CVE-2021-25418High7.82021-06-11Improper component protection vulnerability in Samsung Internet prior to version 14.0.1.62 allows untrusted applications to execute arbitrary activity in speci…
CVE-2021-25400High7.82021-06-11Intent redirection vulnerability in Samsung Internet prior to version 14.0.1.20 allows attacker to execute privileged action.
CVE-2024-20838Medium6.82024-03-05Improper validation vulnerability in Samsung Internet prior to version 24.0.3.2 allows local attackers to execute arbitrary code.
CVE-2023-30674Medium6.52023-07-06Improper configuration in Samsung Internet prior to version 21.0.0.41 allows attacker to bypass SameSite Cookie.
CVE-2022-22290Medium6.52022-01-14Incorrect download source UI in Downloads in Samsung Internet prior to 16.0.6.23 allows attackers to perform domain spoofing via a crafted HTML page.
CVE-2021-25466Medium6.52021-09-09Improper scheme check vulnerability in Samsung Internet prior to version 15.0.2.47 allows attackers to perform Man-in-the-middle attack and obtain Samsung Acco…
CVE-2021-25419Medium6.52021-06-11Non-compliance of recommended secure coding scheme in Samsung Internet prior to version 14.0.1.62 allows attackers to display fake URL in address bar via phisi…
CVE-2025-32407Medium5.92025-05-16Samsung Internet for Galaxy Watch version 5.0.9, available up until Samsung Galaxy Watch 3, does not properly validate TLS certificates, allowing for an attack…
CVE-2021-25520Medium5.92021-12-08Insecure caller check and input validation vulnerabilities in SearchKeyword deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to e…
CVE-2022-22284Medium5.72022-01-10Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to bypass secret mode password authentication
CVE-2026-21036Medium5.52026-06-05Improper authorization in Samsung Internet prior to version 30.0.0.39 allows local attackers to access sensitive information.
CVE-2025-58485Medium5.52025-12-02Improper input validation in Samsung Internet prior to version 29.0.0.48 allows local attackers to inject arbitrary script.
CVE-2024-20869Medium5.52024-05-07Improper privilege management vulnerability in Samsung Internet prior to version 25.0.0.41 allows local attackers to bypass protection for cookies.
CVE-2024-20829Medium5.42024-03-05Missing proper interaction for opening deeplink in Samsung Internet prior to version v24.0.0.0 allows remote attackers to open an application without proper in…
CVE-2024-20837Medium5.32024-03-05Improper handling of granting permission for Trusted Web Activities in Samsung Internet prior to version 24.0.0.41 allows local attackers to grant permission t…
CVE-2021-25445Medium5.32021-08-05Unprotected component vulnerability in Samsung Internet prior to version 14.2 allows untrusted application to access internal files in Samsung Internet.
CVE-2025-20995Medium4.92025-06-04Improper handling of insufficient permission in ClientProvider in Samsung Internet installed on non-Samsung Device prior to version 28.0.0.59 allows local atta…
CVE-2025-20994Medium4.52025-06-04Improper handling of insufficient permission in SyncClientProvider in Samsung Internet installed on non-Samsung Device prior to version 28.0.0.59 allows local…
CVE-2022-39873Medium4.32022-10-07Improper authorization vulnerability in Samsung Internet prior to version 18.0.4.14 allows physical attackers to add bookmarks in secret mode without user auth…
CVE-2022-30738Medium4.32022-06-07Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address bar via executing script.