ID
VAR-202203-1034
CVE
CVE-2022-25830
TITLE
Samsung's Android for Galaxy Watch3 Information disclosure vulnerability in plug-in
Trust: 0.8
sources:
JVNDB: JVNDB-2022-006684
DESCRIPTION
Information Exposure vulnerability in Galaxy Watch3 Plugin prior to version 2.2.09.22012751 allows attacker to access password information of connected WiFiAp in the log. Samsung's Android for Galaxy Watch3 The plugin contains an information disclosure vulnerability.Information may be obtained
Trust: 1.62
sources:
NVD: CVE-2022-25830 //
JVNDB: JVNDB-2022-006684
AFFECTED PRODUCTS
| vendor: | samsung | model: | galaxy watch 3 plugin | scope: | lt | version: | 2.2.03.22012751 | Trust: 1.0 |
| vendor: | サムスン | model: | galaxy watch3 プラグイン | scope: | eq | version: | galaxy watch3 plugin 2.2.03.22012751 | Trust: 0.8 |
| vendor: | サムスン | model: | galaxy watch3 プラグイン | scope: | - | version: | - | Trust: 0.8 |
| vendor: | サムスン | model: | galaxy watch3 プラグイン | scope: | eq | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2022-006684 //
NVD: CVE-2022-25830
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
JVNDB: JVNDB-2022-006684 //
CNNVD: CNNVD-202203-853 //
NVD: CVE-2022-25830 //
NVD: CVE-2022-25830
PROBLEMTYPE DATA
| problemtype: | CWE-532 | Trust: 1.0 |
| problemtype: | CWE-200 | Trust: 1.0 |
| problemtype: | information leak (CWE-200) [NVD evaluation ] | Trust: 0.8 |
sources:
JVNDB: JVNDB-2022-006684 //
NVD: CVE-2022-25830
THREAT TYPE
local
Trust: 0.6
sources:
CNNVD: CNNVD-202203-853
TYPE
log information leak
Trust: 0.6
sources:
CNNVD: CNNVD-202203-853
PATCH
| title: | SAMSUNG Galaxy Watch3 Plugin Repair measures for log information disclosure vulnerabilities | url: | http://123.124.177.30/web/xxk/bdxqById.tag?id=245127 | Trust: 0.6 |
sources:
CNNVD: CNNVD-202203-853
EXTERNAL IDS
| db: | NVD | id: | CVE-2022-25830 | Trust: 3.2 |
| db: | JVNDB | id: | JVNDB-2022-006684 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202203-853 | Trust: 0.6 |
sources:
JVNDB: JVNDB-2022-006684 //
CNNVD: CNNVD-202203-853 //
NVD: CVE-2022-25830
REFERENCES
| url: | https://security.samsungmobile.com/serviceweb.smsb?year=2022&month=3 | Trust: 2.4 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2022-25830 | Trust: 0.8 |
| url: | https://cxsecurity.com/cveshow/cve-2022-25830/ | Trust: 0.6 |
sources:
JVNDB: JVNDB-2022-006684 //
CNNVD: CNNVD-202203-853 //
NVD: CVE-2022-25830
SOURCES
| db: | JVNDB | id: | JVNDB-2022-006684 |
| db: | CNNVD | id: | CNNVD-202203-853 |
| db: | NVD | id: | CVE-2022-25830 |
LAST UPDATE DATE
2024-11-23T21:58:29.236000+00:00
SOURCES UPDATE DATE
| db: | JVNDB | id: | JVNDB-2022-006684 | date: | 2023-07-07T08:26:00 |
| db: | CNNVD | id: | CNNVD-202203-853 | date: | 2023-07-11T00:00:00 |
| db: | NVD | id: | CVE-2022-25830 | date: | 2024-11-21T06:53:04.853 |
SOURCES RELEASE DATE
| db: | JVNDB | id: | JVNDB-2022-006684 | date: | 2023-07-07T00:00:00 |
| db: | CNNVD | id: | CNNVD-202203-853 | date: | 2022-03-10T00:00:00 |
| db: | NVD | id: | CVE-2022-25830 | date: | 2022-03-10T17:47:27.220 |