CVE-2022-28794 LOW

CVE-2022-28794

Vendor Samsung Mobile
Product Samsung Mobile Devices
Weakness CWE-213
Published June 7, 2022
Last update August 3, 2024

CVSS base score

2.2/10
Attack vector Local
Attack complexity High
Privileges required Low
User interaction Required
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Sensitive information exposure in low-battery dumpstate log prior to SMR Jun-2022 Release 1 allows local attackers to get SIM card information.

Key dates

02Disclosure timeline

June 7, 2022 CVE published
August 3, 2024 Record updated