CVE-2022-39844

CWE-3543 documents3 sources
Severity
7.1HIGH
EPSS
0.0%
top 92.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Samsung Mobile Smart Switch PCSamsung Smart Switch PC
Timeline
PublishedSep 9
Latest updateSep 10

Description

Improper validation of integrity check vulnerability in Smart Switch PC prior to version 4.3.22083 allows local attackers to delete arbitrary directory using directory junction.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

NVDsamsung/smart_switch_pc< 4.3.22083
CVEListV5samsung_mobile/smart_switch_pcunspecified4.3.22083

🔴Vulnerability Details

2
GHSA
GHSA-mxx3-8wq4-hrwx: Improper validation of integrity check vulnerability in Smart Switch PC prior to version 42022-09-10
CVEList
CVE-2022-39844: Improper validation of integrity check vulnerability in Smart Switch PC prior to version 42022-09-09
CVE-2022-39844 (HIGH CVSS 7.1) | Improper validation of integrity ch | cvebase.io