2 matches found
CVE-2022-25833
Improper authentication in ImsService prior to SMR Apr-2022 Release 1 allows attackers to get IMSI without READPRIVILEGEDPHONESTATE permission...
CVE-2022-25833
The CVE-2022-25833 entry concerns Samsung SMR prior to Apr-2022 Release 1, where improper authentication in ImsService could allow an attacker to obtain IMSI without the READ_PRIVILEGED_PHONE_STATE permission. The vulnerability involves authentication checks in ImsService, enabling local access t...