CVE-2022-28782

Summary

Improper access control vulnerability in Contents To Window prior to SMR May-2022 Release 1 allows physical attacker to install package before completion of Setup wizard. The patch blocks entry point of the vulnerability.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Mobile DevicesSelect R(11), S(12) devices < SMR May-2022 Release 1affected

Weaknesses

  • CWE-424: CWE-424: Improper Protection of Alternate Path

ADP Enrichment

CVE Program Container

Additional References

References