CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/05/22 11:34 p.m.•1 views

CVE-2022-39879

Improper authorization vulnerability in?CallBGProvider prior to SMR Nov-2022 Release 1 allows local attacker to grant permission for accessing information with phone uid...

5.9CVSS4.2AI score0.00016EPSS

RedhatCVE•added 2025/05/22 11:17 p.m.•3 views

CVE-2022-36850

Path traversal vulnerability in CallBGProvider prior to SMR Sep-2022 Release 1 allows attacker to overwrite arbitrary file with phone uid...

4.7CVSS6AI score0.00023EPSS

OSV•added 2022/11/09 10:15 p.m.•1 views

CVE-2022-39879

Improper authorization vulnerability in?CallBGProvider prior to SMR Nov-2022 Release 1 allows local attacker to grant permission for accessing information with phone uid...

3.3CVSS5.8AI score0.00016EPSS

NVD•added 2022/11/09 10:15 p.m.•13 views

CVE-2022-39879

Improper authorization vulnerability in?CallBGProvider prior to SMR Nov-2022 Release 1 allows local attacker to grant permission for accessing information with phone uid...

5.9CVSS0.00016EPSS

Prion•added 2022/11/09 10:15 p.m.•9 views

Authorization

Improper authorization vulnerability in?CallBGProvider prior to SMR Nov-2022 Release 1 allows local attacker to grant permission for accessing information with phone uid...

1.7CVSS3.9AI score0.00016EPSS

CNNVD•added 2022/11/09 12:0 a.m.•1 views

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from South Korea's Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices versions prior to SMR Nov-2022 Release 1, which stems from an improper authorization vulnerability in...

5.9CVSS5.1AI score0.00016EPSS

Vulnrichment•added 2022/11/09 12:0 a.m.•3 views

CVE-2022-39879

Improper authorization vulnerability in?CallBGProvider prior to SMR Nov-2022 Release 1 allows local attacker to grant permission for accessing information with phone uid...

5.9CVSS6.3AI score0.00016EPSS

Cvelist•added 2022/11/09 12:0 a.m.•12 views

CVE-2022-39879

Improper authorization vulnerability in?CallBGProvider prior to SMR Nov-2022 Release 1 allows local attacker to grant permission for accessing information with phone uid...

5.9CVSS5.7AI score0.00016EPSS

CVE•added 2022/11/09 12:0 a.m.•58 views

CVE-2022-39879

CVE-2022-39879 concerns an improper authorization vulnerability in Samsung CallBGProvider prior to SMR Nov-2022 Release 1. A local attacker can exploit this to grant permissions for accessing information tied to the device’s phone UID. The issue is documented across multiple sources as affecting ...

5.9CVSS3.8AI score0.00016EPSS

Positive Technologies•added 2022/11/09 12:0 a.m.•2 views

PT-2022-25071 · Unknown · Callbgprovider

Name of the Vulnerable Software and Affected Versions: CallBGProvider versions prior to SMR Nov-2022 Release 1 Description: The issue is related to an improper authorization vulnerability. It allows a local attacker to grant permission for accessing information with phone uid. Recommendations: Fo...

5.9CVSS3.6AI score0.00016EPSS

Exploits0References3

OSV•added 2022/09/09 3:15 p.m.•1 views

CVE-2022-36850

Path traversal vulnerability in CallBGProvider prior to SMR Sep-2022 Release 1 allows attacker to overwrite arbitrary file with phone uid...

4.7CVSS5.9AI score

ATTACKERKB•added 2022/09/09 3:15 p.m.•2 views

CVE-2022-36850

Path traversal vulnerability in CallBGProvider prior to SMR Sep-2022 Release 1 allows attacker to overwrite arbitrary file with phone uid...

4.7CVSS5.9AI score0.00023EPSS

NVD•added 2022/09/09 3:15 p.m.•14 views

CVE-2022-36850

Path traversal vulnerability in CallBGProvider prior to SMR Sep-2022 Release 1 allows attacker to overwrite arbitrary file with phone uid...

4.7CVSS0.00023EPSS

Prion•added 2022/09/09 3:15 p.m.•11 views

Path traversal

Path traversal vulnerability in CallBGProvider prior to SMR Sep-2022 Release 1 allows attacker to overwrite arbitrary file with phone uid...

1CVSS5AI score0.00023EPSS

CVE•added 2022/09/09 2:40 p.m.•71 views

CVE-2022-36850

CVE-2022-36850 is a path traversal vulnerability in Samsung CallBGProvider present before SMR Sep-2022 Release 1. The issue could allow an attacker to overwrite arbitrary files using the device UID, with local attack requirements (low privileges, no user interaction). The CVE is addressed by appl...

4.7CVSS4.8AI score0.00023EPSS

Cvelist•added 2022/09/09 2:40 p.m.•15 views

CVE-2022-36850

Path traversal vulnerability in CallBGProvider prior to SMR Sep-2022 Release 1 allows attacker to overwrite arbitrary file with phone uid...

4CVSS5.2AI score0.00023EPSS

Positive Technologies•added 2022/09/09 12:0 a.m.•4 views

PT-2022-23654 · Unknown · Callbgprovider

Name of the Vulnerable Software and Affected Versions: CallBGProvider versions prior to SMR Sep-2022 Release 1 Description: A path traversal issue allows an attacker to overwrite arbitrary files with the phone's user ID. Recommendations: For versions prior to SMR Sep-2022 Release 1, update to the...

4.7CVSS4.9AI score0.00023EPSS

CNNVD•added 2022/09/09 12:0 a.m.•2 views

SAMSUNG Mobile devices 路径遍历漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A path traversal vulnerability exists in the SMR Sep-2022 Release 1 version of SAMSUNG Mobile devices, which stems from CallBGProvider containing a pa...

4.7CVSS5.1AI score0.00023EPSS