CVE-2022-25823 — Sensitive Information Exposure in Mobile Galaxy Watch Plugin

Severity

3.3LOWNVD

CNA1.9

EPSS

0.1%

top 81.15%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedMar 10

Latest updateMar 11

Description

Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2.2.05.220126741 allows attackers to access user information in log.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

GHSA

GHSA-cpxq-f479-77hf: Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2↗2022-03-11

▶

CVEList

CVE-2022-25823: Information Exposure vulnerability in Galaxy Watch Plugin prior to version 2↗2022-03-08

▶