CVE-2022-36836
published 2022-08-05CVE-2022-36836: Unprotected provider vulnerability in Charm by Samsung prior to version 1.2.3 allows attackers to read connection state without permission.
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
Unprotected provider vulnerability in Charm by Samsung prior to version 1.2.3 allows attackers to read connection state without permission.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | charm_firmware | < 1.2.3 | 1.2.3 |
| samsung_mobile | charm_by_samsung | >= unspecified < 1.2.3 | 1.2.3 |