CVE-2022-30737 MEDIUM

CVE-2022-30737

Vendor Samsung Mobile
Product Samsung Account
Weakness CWE-200 · Info exposure
Published June 7, 2022
Last update August 3, 2024
View on NVD All CVEs

CVSS base score

4.0/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Implicit Intent hijacking vulnerability in Samsung Account prior to version 13.2.00.6 allows attackers to get email ID.

Key dates

02Disclosure timeline

June 7, 2022 CVE published
August 3, 2024 Record updated

Related vulnerabilities

04Related CVE

CVE-2025-5690 Cursor allows PostgreSQL Anonymizer masked user to gain unauthorized access to authentic data CVE-2023-42505 Apache Superset: Sensitive information disclosure on db connection details CVE-2024-13638 Order Attachments for WooCommerce <= 2.5.1 - Unauthenticated Sensitive Information Exposure Through Unprotected Directory CVE-2020-5301 Information disclosure of source code in SimpleSAMLphp CVE-2021-35527 Password Autocomplete Vulnerability in Hitachi ABB Power Grids eSOMS Application