CVE-2022-30741 LOW

CVE-2022-30741

Vendor Samsung Mobile

Product Find My Mobile

Weakness CWE-200 · Info exposure

Published June 7, 2022

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

3.3/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality Low

Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Sensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7.2.24.12 allows local attackers with log access permission to get sim card information through device log.

Key dates

02Disclosure timeline

June 7, 2022 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-30741 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/200.html

Related vulnerabilities

04Related CVE

CVE-2025-49177 Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: data leak in xfixes extension's xfixessetclientdisconnectmode CVE-2019-1681 Cisco Network Convergence System 1000 Series TFTP Directory Traversal Vulnerability CVE-2022-40194 WordPress Customer Reviews for WooCommerce plugin <= 5.3.5 - Sensitive Information Disclosure vulnerability CVE-2024-38200 Microsoft Office Spoofing Vulnerability CVE-2024-50338 Carriage-return character in remote URL allows malicious repository to leak credentials in Git Credential Manager

Identifiers

CVE CVE-2022-30741

CWE CWE-200

CVSS 3.3 / LOW

Affected versions

Vendor Samsung Mobile

Product Find My Mobile

Affected ≥ unspecified and < 7.2.24.12