Implicit Intent Hijacking Vulnerability in Galaxy Wearable by Samsung
CVE-2022-36838

4MEDIUM

Key Information:

Vendor: Samsung
Status: Galaxy Wearable
Vendor: CVE Published:; 5 August 2022

What is CVE-2022-36838?

An implicit intent hijacking vulnerability exists in Samsung's Galaxy Wearable application, which may allow attackers to exploit this vulnerability and access sensitive information from the device. Users are urged to update to version 2.2.50 or later to mitigate any risks associated with this security flaw.

Affected Version(s)

Galaxy Wearable < 2.2.50

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2...

x_refsource_MISC

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 5, 2022
Vulnerability Reserved
Jul 27, 2022