CVE-2022-22291

Summary

Logging of excessive data vulnerability in telephony prior to SMR Feb-2022 Release 1 allows privileged attackers to get Cell Location Information through log of user device.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Mobile DevicesQ(10.0), R(11.0), S(12.0) < SMR Feb-2022 Release 1affected

Weaknesses

  • CWE-779: CWE-779 Logging of Excessive Data

ADP Enrichment

CVE Program Container

Additional References

References