CVE-2022-36877

Summary

Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global and 14.0.02.4 in China allows local attackers to access device identification via log.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Membersunspecified < 4.3.00.11 in Global and 14.0.02.4 in Chinaaffected

Weaknesses

  • CWE-200: CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

ADP Enrichment

CVE Program Container

Additional References

References