CVE-2022-39875

CWE-284Improper Access Control3 documents3 sources
Severity
4.4MEDIUM
EPSS
0.1%
top 81.57%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Samsung Mobile Samsung AccountSamsung Account
Timeline
PublishedOct 7

Description

Improper component protection vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:LExploitability: 2.5 | Impact: 2.5

Affected Packages2 packages

NVDsamsung/account< 13.5.01.3
CVEListV5samsung_mobile/samsung_accountunspecified13.5.0

🔴Vulnerability Details

2
GHSA
GHSA-w4pf-496r-gp7q: Improper component protection vulnerability in Samsung Account prior to version 132022-10-07
CVEList
CVE-2022-39875: Improper component protection vulnerability in Samsung Account prior to version 132022-10-07
CVE-2022-39875 (MEDIUM CVSS 4.4) | Improper component protection vulne | cvebase.io