CVE-2022-30751 LOW

CVE-2022-30751

Vendor Samsung Mobile
Product Samsung Mobile Devices
Weakness CWE-284
Published July 11, 2022
Last update August 3, 2024
View on NVD All CVEs

CVSS base score

3.3/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior to SMR Jul-2022 Release 1 allows attacker to access wifi ap client mac address that connected by using WIFI_AP_STA_DHCPACK_EVENT action.

Key dates

02Disclosure timeline

July 11, 2022 CVE published
August 3, 2024 Record updated

Related vulnerabilities

04Related CVE

CVE-2026-49823 Fission: Cross-namespace Package read via unvalidated PackageRef in Function admission webhook CVE-2025-64715 Cilium with misconfigured toGroups in policies can lead to unrestricted egress traffic CVE-2021-36917 WordPress Hide My WP premium plugin <= 6.2.3 - Unauthenticated Plugin Deactivation vulnerability CVE-2025-20242 CVE-2023-47110 Any value can be changed in the configuration table by an employee having access to block reassurance module