Lucene search

Samsung MobileCVELIST:CVE-2022-30744

HistoryJun 07, 2022 - 6:19 p.m.

CVE-2022-30744

2022-06-0718:19:36

CWE-20

Samsung Mobile

www.cve.org

cve-2022-30744

kieswrapper

samsung kies

arbitrary code

dll hijacking

CVSS3

6.2

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

25.9%

JSON

DLL hijacking vulnerability in KiesWrapper in Samsung Kies prior to version 2.6.4.22043_1 allows attacker to execute arbitrary code.

CNA Affected

[
  {
    "product": "Samsung Kies",
    "vendor": "Samsung Mobile",
    "versions": [
      {
        "lessThan": "2.6.4.22043_1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

security.samsungmobile.com/serviceWeb.smsb?year=2022&month=6

CVSS3

6.2

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

25.9%

JSON

Related for CVELIST:CVE-2022-30744