Android Applications Updates
SVE-2022-0221(CVE-2022-36851): Improper access control in Samsung pass
Severity: Moderate
Resolved version: 4.0.03.1
Reported on: January 25, 2022
Description: Improper access control vulnerability in Samsung Pass prior to version 4.0.03.1 allow physical attackers to access data of Samsung Pass on a certain state of an unlocked device.
The patch adds defense logic on recent app usage scenario.
Acknowledgement: Harsh Tyagi
SVE-2022-0323(CVE-2022-36864): Improper access control and intent redirection in Samsung Email
Severity: Moderate
Resolved version: 6.1.70.20
Reported on: February 9, 2022
Description: Improper access control and intent redirection in Samsung Email prior to version 6.1.70.20 allows attacker to access specific formatted file and execute privileged behavior.
The patch adds proper permission check in Samsung Email.
Acknowledgement: Dawuge of Pangu Team
SVE-2022-0385(CVE-2022-36869): Improper access control in Contacts Provider
Severity: Moderate
Resolved version: 12.7.59
Reported on: February 18, 2022
Description: Improper access control vulnerability in ContactsDumpActivity of Contacts Provider prior to version 12.7.59 allows attacker to access the file without permission.
The patch blocked the access to ContactsdumpActivity.
Acknowledgement: Harsh Tyagi
SVE-2022-0764(CVE-2022-36865): Improper access control vulnerability in Group Sharing
Severity: Moderate
Resolved versions: 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below
Reported on: March 27, 2022
Description: Improper access control in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below allows attackers to access device information.
The patch adds proper caller check logic to prevent unauthorized access.
Acknowledgement: Sergey Toshin
SVE-2022-0765(CVE-2022-36866): Improper access control in Group Sharing
Severity: Moderate
Resolved versions: 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below
Reported on: March 27, 2022
Description: Improper access control vulnerability in Broadcaster in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and below allows attackers to identify the device.
The patch adds proper access control check logic for broadcasting data.
Acknowledgement: Sergey Toshin
SVE-2022-0770(CVE-2022-36867): Improper access control vulnerability in Editor Lite
Severity: Moderate
Resolved version: 4.0.40.14
Reported on: March 28, 2022
Description: Improper access control vulnerability in Editor Lite prior to version 4.0.40.14 allows attackers to access sensitive information.
The patch adds proper access control.
Acknowledgement: Sergey Toshin
SVE-2022-0973(CVE-2022-36872, CVE-2022-36871, CVE-2022-36870): Pending Intent hijacking in Samsung Pay
Severity: Moderate
Resolved versions: 5.0.63 for KR and 5.1.47 for Global
Reported on: April 19, 2022
Description: Pending Intent hijacking vulnerability in Samsung Pay prior to versions 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.
The patch addresses the Intent in Samsung Pay to prevent unprivileged access.
Acknowledgement: Sergey Toshin
SVE-2022-0974(CVE-2022-36873): Leak of MAC address of connected Bluetooth device in Water plugin
Severity: Moderate
Resolved version: 2.2.11.22081151
Reported on: April 19, 2022
Description: Improper restriction of broadcasting Intent in GalaxyStoreBridgePageLinker of Water plugin prior to version 2.2.11.22081151 leaks MAC address of the connected Bluetooth device.
The patch modifies the log so that it cannot be read without permission.
Acknowledgement: Stealth assassin
SVE-2022-0980(CVE-2022-36874): Improper Handling of Insufficient Permissions or Privileges vulnerability in Water plugin
Severity: Moderate
Resolved version: 2.2.11.22040751
Reported on: April 20, 2022
Description: Improper Handling of Insufficient Permissions or Privileges vulnerability in Water plugin prior to version 2.2.11.22040751 allows attacker to access device IMEI and Serial number.
The patch adds proper permission check in Water plugin to prevent unauthorized access.
Acknowledgement: Stealth assassin
SVE-2022-1031(CVE-2022-36875): Improper restriction of broadcasting Intent in Water plugin
Severity: Moderate
Resolved version: 2.2.11.22081151
Reported on: April 25, 2022
Description: Improper restriction of broadcasting Intent in SaWebViewRelayActivity of Water plugin prior to version 2.2.11.22081151 allows attacker to access the file without permission.
The patch adds proper validation logic to prevent arbitrary files access.
Acknowledgement: Stealth assassin
SVE-2022-1270(CVE-2022-36876): Improper authorization in Samsung Pass
Severity: Moderate
Resolved version: 4.0.04.10
Reported on: May 19, 2022
Description: Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access account list without authentication.
The patch adds proper user authentication.
Acknowledgement: Harsh Tyagi
SVE-2022-1337(CVE-2022-36859): Improper input validation vulnerability in SmartTag Plugin
Severity: High
Resolved version: 1.2.21-6
Reported on: May 27, 2022
Description: Improper input validation vulnerability in SmartTag Plugin prior to version 1.2.21-6 allows privileged attackers to trigger a XSS on a victim's devices.
The patch adds the proper validation of input data.
Acknowledgement: Martin Heyden
SVE-2022-1588(CVE-2022-36877): Exposure of Sensitive Information in Samsung Members
Severity: Moderate
Resolved versions: 4.3.00.11 in Global and 14.0.02.4 in China
Reported on: June 30, 2022
Description: Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global and 14.0.02.4 in China allows local attackers to access device identification via log.
The patch fixes improper logging.
Acknowledgement: hsia.angsh
SVE-2022-1735(CVE-2022-36878): Exposure of Sensitive Information vulnerability in Find My Mobile
Severity: Moderate
Resolved version: 7.2.25.14
Reported on: July 21, 2022
Description: Exposure of Sensitive Information in Find My Mobile prior to version 7.2.25.14 allows local attacker to access IMEI via log.
The patch fixes improper logging.
Acknowledgement: hsia.angsh
PC Updates
SVE-2022-1841(CVE-2022-39846): DLL hijacking vulnerability in Smart Switch PC
Severity: Moderate
Resolved version: 4.3.22083_3
Reported on: August 2, 2022
Description: DLL hijacking vulnerability in Smart Switch PC prior to version 4.3.22083_3 allows attacker to execute arbitrary code.
The patch remove the directory path in log.
Acknowledgement: HeeChan Kim (@heegong123) of TeamH4C
SVE-2022-1770(CVE-2022-39845): Possible to delete arbitrary directory vulnerability in Samsung Kies
Severity: Moderate
Resolved version: 2.6.4.22074
Reported on: July 23, 2022
Description: Improper validation of integrity check vulnerability in Samsung Kies prior to version 2.6.4.22074 allows local attackers to delete arbitrary directory using directory junction.
The patch prevents directory junction in the directory used during installation process.
Acknowledgement: DoHyun Lee(@l33d0hyun) of DNSLab, Korea University
SVE-2022-1647(CVE-2022-39844): Possible to delete arbitrary directory vulnerability in Smart Switch PC
Severity: Moderate
Resolved version: 4.3.22083
Reported on: July 10, 2022
Description: Improper validation of integrity check vulnerability in Smart Switch PC prior to version 4.3.22083 allows local attackers to delete arbitrary directory using directory junction.
The patch prevents directory junction in the directory used during installation process.
Acknowledgement: ycdxsb of VARAS@IIE