Lucene search

[email protected]CVE-2022-33718

HistoryAug 05, 2022 - 4:15 p.m.

CVE-2022-33718

2022-08-0516:15:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2022-33718

wi-fi service

access control

vulnerability

smr aug-2022

mobile data manipulation

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

4.3 Medium

AI Score

Confidence

High

1.7 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:S/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

11.7%

JSON

An improper access control vulnerability in Wi-Fi Service prior to SMR AUG-2022 Release 1 allows untrusted applications to manipulate the list of apps that can use mobile data.

CPENameOperatorVersion
google:androidgoogle androideq10.0
google:androidgoogle androideq11.0
google:androidgoogle androideq12.0

CPE	Name	Operator	Version
google:android	google android	eq	10.0
google:android	google android	eq	11.0
google:android	google android	eq	12.0

References

security.samsungmobile.com/securityUpdate.smsb?year=2022&month=08

Social References

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

4.3 Medium

AI Score

Confidence

High

1.7 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:S/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

11.7%

JSON

Related for CVE-2022-33718

prion1