CVSS: 6.2EPSS: 0%CPEs: 3EXPL: 0CVE-2022-33702
https://notcve.org/view.php?id=CVE-2022-33702
Improper authorization vulnerability in Knoxguard prior to SMR Jul-2022 Release 1 allows local attacker to disable keyguard and bypass Knoxguard lock by factory reset. Una vulnerabilidad de autorización inapropiada en Knoxguard versiones anteriores a SMR Jul-2022 Release 1, permite a un atacante local deshabilitar keyguard y omitir el bloqueo de Knoxguard mediante un restablecimiento de fábrica • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-285: Improper Authorization •
CVSS: 3.3EPSS: 0%CPEs: 3EXPL: 0CVE-2022-33701
https://notcve.org/view.php?id=CVE-2022-33701
Improper access control vulnerability in KnoxCustomManagerService prior to SMR Jul-2022 Release 1 allows attacker to call PowerManaer.goToSleep method which is protected by system permission by sending braodcast intent. Una vulnerabilidad de control de acceso inapropiado en KnoxCustomManagerService versiones anteriores a SMR Jul-2022 Release 1, permite al atacante llamar al método PowerManaer.goToSleep que está protegido por el permiso del sistema mediante el envío de braodcast intent • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-284: Improper Access Control •
CVSS: 2.3EPSS: 0%CPEs: 3EXPL: 0CVE-2022-33700
https://notcve.org/view.php?id=CVE-2022-33700
Exposure of Sensitive Information in putDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 allows local attacker to access imsi via log. Una exposición de información confidencial en putDsaSimImsi en TelephonyUI versiones anteriores a SMR Jul-2022 Release 1, permite a un atacante local acceder a imsi por medio del registro • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 2.3EPSS: 0%CPEs: 3EXPL: 0CVE-2022-33699
https://notcve.org/view.php?id=CVE-2022-33699
Exposure of Sensitive Information in getDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 allows local attacker to access imsi via log. Una exposición de información confidencial en getDsaSimImsi en TelephonyUI versiones anteriores a SMR Jul-2022 Release 1, permite a un atacante local acceder a imsi por medio del registro • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 3.3EPSS: 0%CPEs: 3EXPL: 0CVE-2022-33698
https://notcve.org/view.php?id=CVE-2022-33698
Exposure of Sensitive Information in Telecom application prior to SMR Jul-2022 Release 1 allows local attackers to access ICCID via log. Una exposición de información confidencial en la aplicación Telecom versiones anteriores a SMR Jul-2022 Release 1, permite a atacantes locales acceder al ICCID por medio del registro • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •