CVE-2022-39915 LOW

CVE-2022-39915

Vendor Samsung Mobile
Product Samsung Calendar
Weakness CWE-284
Published December 8, 2022
Last update April 23, 2025

CVSS base score

3.3/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Improper access control vulnerability in Calendar prior to versions 11.6.08.0 in Android Q(10), 12.2.11.3000 in Android R(11), 12.3.07.2000 in Android S(12), and 12.4.02.0 in Android T(13) allows attackers to access sensitive information via implicit intent.

Key dates

02Disclosure timeline

December 8, 2022 CVE published
April 23, 2025 Record updated