CVE-2022-33715

Summary

Improper access control and path traversal vulnerability in LauncherProvider prior to SMR Aug-2022 Release 1 allow local attacker to access files of One UI.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Mobile DevicesR(11), S(12) < SMR Aug-2022 Release 1affected

Weaknesses

  • CWE-20: CWE-20: Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References