Vulnerabilities > CVE-2022-39915 - Unspecified vulnerability in Samsung Calendar

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

samsung

NVD

Published: 2022-12-08

Updated: 2022-12-12

Summary

Improper access control vulnerability in Calendar prior to versions 11.6.08.0 in Android Q(10), 12.2.11.3000 in Android R(11), 12.3.07.2000 in Android S(12), and 12.4.02.0 in Android T(13) allows attackers to access sensitive information via implicit intent.

Vulnerable Configurations

Part	Description	Count
Application	Samsung Samsung Calendar - Samsung Calendar 11.6.08.0 Samsung Calendar 12.2.11.3000 Samsung Calendar 12.3.05.10000 Samsung Calendar 12.3.07.2000	5
OS	Google Google Android 10.0 Google Android 11.0 Google Android 12.0 Google Android 13.0	4

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=12