3 matches found
CVE-2022-27838
Summary: CVE-2022-27838 is an improper access control vulnerability in Samsung FactoryCamera prior to version 2.1.96. An attacker could access a file with system privileges due to insufficient access controls. Affected software: FactoryCamera, versions before 2.1.96. Impact: Access to restricted ...
CVE-2022-39861
CVE-2022-39861 affects Samsung FactoryCamera: an unprotected AtBroadcastReceiver enables a local attacker to record video without camera privileges. Root cause is an unprotected receiver in FactoryCamera prior to version 3.5.51. Impact is constrained to video recording capabilities; no remote exp...
CVE-2022-39858
CVE-2022-39858 describes a path traversal in FactoryCamera’s AtBroadcastReceiver. The issue affects FactoryCamera prior to version 3.5.51, allowing an attacker to write arbitrary files with FactoryCamera privileges. Root cause: path traversal in AtBroadcastReceiver. Impact: local file write with ...