CVSS: 3.3EPSS: 0%CPEs: 3EXPL: 0CVE-2022-33687
https://notcve.org/view.php?id=CVE-2022-33687
11 Jul 2022 — Exposure of Sensitive Information in telephony-common.jar prior to SMR Jul-2022 Release 1 allows local attackers to access IMSI via log. Una exposición de información confidencial en telephony-common.jar versiones anteriores a SMR Jul-2022 Release 1, permite a atacantes locales acceder a la IMSI por medio del registro • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 2.3EPSS: 0%CPEs: 3EXPL: 0CVE-2022-33686
https://notcve.org/view.php?id=CVE-2022-33686
11 Jul 2022 — Exposure of Sensitive Information in GsmAlarmManager prior to SMR Jul-2022 Release 1 allows local attacker to access iccid via log. Una exposición de información confidencial en GsmAlarmManager versiones anteriores a SMR Jul-2022 Release 1, permite a atacantes locales acceder a iccid por medio del registro • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-552: Files or Directories Accessible to External Parties •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-33685
https://notcve.org/view.php?id=CVE-2022-33685
11 Jul 2022 — Unprotected dynamic receiver in Wearable Manager Service prior to SMR Jul-2022 Release 1 allows attacker to launch arbitray activity and access senstive information. Un receptor dinámico desprotegido en el servicio Wearable Manager versiones anteriores a SMR Jul-2022 Release 1, permite a un atacante iniciar una actividad arbitraria y acceder a información confidencial • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-561: Dead Code •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-30758
https://notcve.org/view.php?id=CVE-2022-30758
11 Jul 2022 — Implicit Intent hijacking vulnerability in Finder prior to SMR Jul-2022 Release 1 allow allows attackers to access some protected information with privilege of Finder. Una vulnerabilidad secuestro de Intención Implícita en Finder versiones anteriores a SMR Jul-2022 Release 1, permite a atacantes acceder a cierta información protegida con privilegios de Finder • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-276: Incorrect Default Permissions •
CVSS: 4.0EPSS: 0%CPEs: 3EXPL: 0CVE-2022-30757
https://notcve.org/view.php?id=CVE-2022-30757
11 Jul 2022 — Improper authorization in isemtelephony prior to SMR Jul-2022 Release 1 allows attacker to obtain CID without ACCESS_FINE_LOCATION permission. Una autorización inapropiada en isemtelephony versiones anteriores a SMR Jul-2022 Release 1, permite a un atacante obtener el CID sin el permiso ACCESS_FINE_LOCATION • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-285: Improper Authorization •
CVSS: 8.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-30756
https://notcve.org/view.php?id=CVE-2022-30756
11 Jul 2022 — Implicit Intent hijacking vulnerability in Finder prior to SMR Jul-2022 Release 1 allow allows attackers to launch certain activities with privilege of Finder. Una vulnerabilidad de secuestro de Intención Implícita en Finder versiones anteriores a SMR Jul-2022 Release 1, permite a atacantes iniciar determinadas actividades con el privilegio de Finder • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2022-30755
https://notcve.org/view.php?id=CVE-2022-30755
11 Jul 2022 — Improper authentication vulnerability in AppLock prior to SMR Jul-2022 Release 1 allows attacker to bypass password confirm activity by hijacking the implicit intent. Una vulnerabilidad de autenticación inapropiada en AppLock versiones anteriores a SMR Jul-2022 Release 1, permite a atacantes omitir la actividad de confirmación de contraseña mediante el secuestro de Intención Implícita • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-287: Improper Authentication •
CVSS: 8.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-30754
https://notcve.org/view.php?id=CVE-2022-30754
11 Jul 2022 — Implicit Intent hijacking vulnerability in AppLinker prior to SMR Jul-2022 Release 1 allow allows attackers to launch certain activities with privilege of AppLinker. Una vulnerabilidad de secuestro de Intención Implícita en AppLinker versiones anteriores a SMR Jul-2022 Release 1, permite a atacantes iniciar determinadas actividades con el privilegio de AppLinker • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-20: Improper Input Validation •
CVSS: 3.3EPSS: 0%CPEs: 3EXPL: 0CVE-2022-30753
https://notcve.org/view.php?id=CVE-2022-30753
11 Jul 2022 — Improper use of a unique device ID in unprotected SecSoterService prior to SMR Jul-2022 Release 1 allows local attackers to get the device ID without permission. Un uso inapropiado de un ID de dispositivo único en SecSoterService no protegido versiones anteriores a SMR Jul-2022 Release 1, permite a atacantes locales conseguir el ID del dispositivo sin permiso • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-276: Incorrect Default Permissions •
CVSS: 3.3EPSS: 0%CPEs: 3EXPL: 0CVE-2022-30752
https://notcve.org/view.php?id=CVE-2022-30752
11 Jul 2022 — Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior to SMR Jul-2022 Release 1 allows attacker to access wifi ap client mac address that connected by using WIFI_AP_STA_STATE_CHANGED action. Una vulnerabilidad de control de acceso inapropiado en la función sendDHCPACKBroadcast de SemWifiApClient versiones anteriores a SMR Jul-2022 Release 1, permite a un atacante acceder a la dirección mac del cliente wifi ap que fue conectada mediante la acción WIFI_AP_STA_STATE_CH... • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-284: Improper Access Control •