CVE-2022-25830
https://notcve.org/view.php?id=CVE-2022-25830
Information Exposure vulnerability in Galaxy Watch3 Plugin prior to version 2.2.09.22012751 allows attacker to access password information of connected WiFiAp in the log Una vulnerabilidad de Exposición de Información en Galaxy Watch3 Plugin versiones anteriores a 2.2.09.22012751, que permite a un atacante acceder a la información de la contraseña del WiFiAp conectado en el registro • https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=3 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-532: Insertion of Sensitive Information into Log File •
CVE-2022-25826
https://notcve.org/view.php?id=CVE-2022-25826
Information Exposure vulnerability in Galaxy S3 Plugin prior to version 2.2.03.22012751 allows attacker to access password information of connected WiFiAp in the log Una vulnerabilidad de Exposición de Información en Galaxy S3 Plugin versiones anteriores a 2.2.03.22012751, permite a un atacante acceder a información de la contraseña de un WiFiAp conectado en el registro • https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=3 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-532: Insertion of Sensitive Information into Log File •
CVE-2021-25421
https://notcve.org/view.php?id=CVE-2021-25421
Improper log management vulnerability in Galaxy Watch3 PlugIn prior to version 2.2.09.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log. Una vulnerabilidad de administración de registros inapropiada en Galaxy Watch3 PlugIn versiones anteriores a 2.2.09.21033151, permite a un atacante con permisos de registro filtrar la contraseña de Wi-Fi conectada al smartphone del usuario dentro del registro • https://security.samsungmobile.com/serviceWeb.smsb?year=2021&month=6 • CWE-532: Insertion of Sensitive Information into Log File CWE-779: Logging of Excessive Data •