Samsung Mobile Charm By Samsung vulnerabilities

CVE-2022-36829 [MEDIUM] CWE-927 CVE-2022-36829: PendingIntent hijacking vulnerability in releaseAlarm in Charm by Samsung prior to version 1.2.3 all PendingIntent hijacking vulnerability in releaseAlarm in Charm by Samsung prior to version 1.2.3 allows local attackers to access files without permission via implicit intent.

CVE-2022-36830 [MEDIUM] CWE-927 CVE-2022-36830: PendingIntent hijacking vulnerability in cancelAlarmManager in Charm by Samsung prior to version 1.2 PendingIntent hijacking vulnerability in cancelAlarmManager in Charm by Samsung prior to version 1.2.3 allows local attackers to access files without permission via implicit intent.

CVE-2022-36836 [MEDIUM] CWE-862 CVE-2022-36836: Unprotected provider vulnerability in Charm by Samsung prior to version 1.2.3 allows attackers to re Unprotected provider vulnerability in Charm by Samsung prior to version 1.2.3 allows attackers to read connection state without permission.

CVE-2022-33734 [MEDIUM] CWE-927 CVE-2022-33734: Sensitive information exposure in onCharacteristicChanged in Charm by Samsung prior to version 1.2.3 Sensitive information exposure in onCharacteristicChanged in Charm by Samsung prior to version 1.2.3 allows attacker to get bluetooth connection information without permission.

CVE-2022-33733 [LOW] CWE-927 CVE-2022-33733: Sensitive information exposure in onCharacteristicRead in Charm by Samsung prior to version 1.2.3 al Sensitive information exposure in onCharacteristicRead in Charm by Samsung prior to version 1.2.3 allows attacker to get bluetooth connection information without permission.