SamNews 24
  • Home
  • News
    Samsung ultra-fine semiconductor processes

    Samsung is focusing on ultra-fine semiconductor processes rather than 130-65nm foundry processes

    Samsung Epic In-Person Experiences with Galaxy Experience Space

    Samsung Epic In-Person Experiences with Galaxy Experience Space

    Behold Galaxy S23 Ultra film

    Samsung released Behold Short Film Shot on Galaxy S23 Ultra

    Galaxy Store Buds2 and Note 20 February 2023 update

    Galaxy Note 20 February 2023 security, Galaxy Buds 2, Galaxy Store Material You Icon update rolling out

    Galaxy S22 got a price cut in India

    Galaxy S22 got a price cut in India

    Samsung Good Lock New Logo 2023

    Samsung Good Lock 2023 gets a new icon [Mid-winter weather]

    Samsung Pass Windows Store

    Samsung Pass is now available on Microsoft Store

    Galaxy S23 call sound tips

    Galaxy S23 microphone Not Working? Check Tips and Fixes to Try

    Samsung Galaxy S23 Ultra Image 2

    Galaxy S23 Series Philippines exclusive offers

    Trending Tags

    • Android 13
    • One UI 5
  • Updates
    Galaxy Store Buds2 and Note 20 February 2023 update

    Galaxy Note 20 February 2023 security, Galaxy Buds 2, Galaxy Store Material You Icon update rolling out

    Samsung Good Lock New Logo 2023

    Samsung Good Lock 2023 gets a new icon [Mid-winter weather]

    Galaxy S20 FE 5G

    Galaxy S20 FE 5G gets January 2023 security update in India

    Galaxy F22

    [U: India] Galaxy F22 getting Maintenance mode feature update

    Android Auto Update

    Android Auto getting new 8.8.6304 February 2023 update

    Samsung Tips

    Samsung One UI Tips App getting February 2023 update

    Galaxy A73 5G 2023 Update

    [U: India] Second January 2023 security update rolling for Galaxy A73 5G

    Samsung Shop App Update

    Samsung Shop new 2.0.34039 version brings Galaxy S23 offers

    Download the latest Samsung Free Application Apk

    Samsung Free App gets February 2023 update 5.5.04.34 [New Version]

  • One UI
    • All
    • One UI 4.1
    • One UI 5
    • One UI 5.1
    Samsung Good Lock New Logo 2023

    Samsung Good Lock 2023 gets a new icon [Mid-winter weather]

    Galaxy A32 Update

    Galaxy A32 getting Maintenance mode update in India

    One UI 5 Change language Per App tips

    One UI 5 Tip: How to Change the Language of a Specific App

    Are you facing this Samsung Galaxy Camera bug

    Are you facing this Samsung Galaxy Camera bug? (Video Recording)

    One UI 5.1 Keyboard adapts color palette in Dark Mode

    One UI 5.1: Keyboard adapts color palette in Dark Mode, Battery Widget added 3rd party accessories battery

    Samsung One UI 5.1 vs Apple iOS 16 Battery Status Widget

    Samsung One UI 5.1 vs Apple iOS 16 Battery Status Widget

    Rugged Galaxy XCover 6 Pro arrived on Verizon

    [U: The US] Galaxy XCover 6 Pro receiving stable One UI 5 update [Android 13]

    Samsung Galaxy M21 2021

    Samsung Galaxy M21 2021 gets Android 13 update in India

    Galaxy S9 and Note 9 One UI 5

    These five-year old Samsung phones can run One UI 5 (Android 13)

  • One UI 4.1
    Galaxy-A11-Android-12-Update

    Verizon bounded Galaxy A11 gets Android 12 update

    One UI 5 RAM Plus

    Steps to disable Samsung RAM Plus and reclaim your Galaxy phone’s storage

    Galaxy Tab S8 Ultra getting One UI 4.1.1 update in Korea

    [China Too] Galaxy Tab S8 Ultra getting One UI 4.1.1 update

    Galaxy Z Fold 3 Android 12L - One UI 4.1.1 update

    [Update: China] Galaxy Z Fold 3 Android 12L/One UI 4.1.1 update

    LineageOS 19 for Galaxy A52 4G, and Galaxy A72

    LineageOS 19 supported Samsung devices list [Updated]

    Galaxy A21 getting Android 12 update in the US

    [Unlocked Too] One UI 4.1: Galaxy A21 getting Android 12 update in the US

    Galaxy Z Fold 2 Android 12L (One UI 4.1.1) update

    [U: Verizon] Galaxy Z Fold 2: Android 12L (One UI 4.1.1) update arrives along with 09/2022 patch

    The first Galaxy Z Flip getting One UI 4.1.1 update in the USA

    The first Galaxy Z Flip getting One UI 4.1.1 update in the USA

    Samsung Galaxy Tab S7 FE

    Samsung Galaxy Tab S7 FE getting One UI 4.1.1 (Android 12L) update in India

  • One UI 5
    Samsung Good Lock New Logo 2023

    Samsung Good Lock 2023 gets a new icon [Mid-winter weather]

    Galaxy A32 Update

    Galaxy A32 getting Maintenance mode update in India

    One UI 5 Change language Per App tips

    One UI 5 Tip: How to Change the Language of a Specific App

    Are you facing this Samsung Galaxy Camera bug

    Are you facing this Samsung Galaxy Camera bug? (Video Recording)

    One UI 5.1 Keyboard adapts color palette in Dark Mode

    One UI 5.1: Keyboard adapts color palette in Dark Mode, Battery Widget added 3rd party accessories battery

    Rugged Galaxy XCover 6 Pro arrived on Verizon

    [U: The US] Galaxy XCover 6 Pro receiving stable One UI 5 update [Android 13]

    Samsung Galaxy M21 2021

    Samsung Galaxy M21 2021 gets Android 13 update in India

    Galaxy S9 and Note 9 One UI 5

    These five-year old Samsung phones can run One UI 5 (Android 13)

    Expert RAW eligible 12 Samsung devices

    Expert RAW is available in these 12 Samsung phones starting with S23 Series

  • Devices
    20 reasons to switch to a Samsung Phone

    18 reasons to switch to a Samsung Phone

    Samsung Epic In-Person Experiences with Galaxy Experience Space

    Samsung Epic In-Person Experiences with Galaxy Experience Space

    Top 5 reasons to buy Galaxy S23 Ultra

    Top 5 reasons to buy Galaxy S23 Ultra

    These reasons make Galaxy S23 Ultra as powerful gaming device

    These reasons make Galaxy S23 Ultra as powerful gaming device

    Samsung launches Galaxy S23 Series

    Samsung launches the Galaxy S23 series, now with an improved Hardware and Software

    Samsung launches new outdoor LED series

    Samsung launches new outdoor LED series

    Steps to enable Android Auto’s developer mode

    Steps to enable Android Auto’s developer mode

    Samsung flagship performance

    Samsung’s flagship CPU performance over the years: Exynos vs Snapdragon

    Samsung collaboration with The Upside Space

    Samsung collaboration with The Upside Space [The Art World With Samsung]

  • Tips
    Explore GPX feature

    Explore GPX feature on Samsung Watch 5 Pro

    These reasons make Galaxy S23 Ultra as powerful gaming device

    These reasons make Galaxy S23 Ultra as powerful gaming device

    Step to Clear DNS Cache

    Step to Clear DNS Cache on Android Devices

    Steps to enable Android Auto’s developer mode

    Steps to enable Android Auto’s developer mode

    One UI 5 Create Home screen Widget stacks

    One UI 5: Create Home screen Widget stacks

    Get enable your Gmail’s new package tracking

    You shouldn’t permit else one Gmail address on your Android phone

    Keep your phone safe and secure with these steps

    Keep your phone safe and secure with these steps

    10 mistakes can be observed commonly in Android Users

    10 mistakes can be observed commonly in Android Users

    Install Android Apps on Your Wear OS Watch with ease

    Install Android Apps on Your Wear OS Watch with ease

  • Apps
    Samsung Tips

    Samsung One UI Tips App getting February 2023 update

    Samsung Shop App Update

    Samsung Shop new 2.0.34039 version brings Galaxy S23 offers

    Download the latest Samsung Free Application Apk

    Samsung Free App gets February 2023 update 5.5.04.34 [New Version]

    Samsung Capture latest app apk

    Install the latest Samsung Capture App version 5.4.21.2

    Samsung Always On Display

    Samsung Always On Display February 2023 update is now available [8.1.25]

    Samsung Tasks edge

    Samsung Tasks (Apps) edge getting February 2023 update

    Samsung Galaxy Wearable Update

    Galaxy Wearable (Samsung Gear) February 2023 update rolling out

    Samsung Contacts App APK

    Samsung Contacts v14.1 February 2023 update rolling out

    Samsung Portrait 8.0.06 update

    Samsung Portrait getting February 2023 update – 8.0.29

  • Contact Us
No Result
View All Result
SamNews 24
  • Home
  • News
    Samsung ultra-fine semiconductor processes

    Samsung is focusing on ultra-fine semiconductor processes rather than 130-65nm foundry processes

    Samsung Epic In-Person Experiences with Galaxy Experience Space

    Samsung Epic In-Person Experiences with Galaxy Experience Space

    Behold Galaxy S23 Ultra film

    Samsung released Behold Short Film Shot on Galaxy S23 Ultra

    Galaxy Store Buds2 and Note 20 February 2023 update

    Galaxy Note 20 February 2023 security, Galaxy Buds 2, Galaxy Store Material You Icon update rolling out

    Galaxy S22 got a price cut in India

    Galaxy S22 got a price cut in India

    Samsung Good Lock New Logo 2023

    Samsung Good Lock 2023 gets a new icon [Mid-winter weather]

    Samsung Pass Windows Store

    Samsung Pass is now available on Microsoft Store

    Galaxy S23 call sound tips

    Galaxy S23 microphone Not Working? Check Tips and Fixes to Try

    Samsung Galaxy S23 Ultra Image 2

    Galaxy S23 Series Philippines exclusive offers

    Trending Tags

    • Android 13
    • One UI 5
  • Updates
    Galaxy Store Buds2 and Note 20 February 2023 update

    Galaxy Note 20 February 2023 security, Galaxy Buds 2, Galaxy Store Material You Icon update rolling out

    Samsung Good Lock New Logo 2023

    Samsung Good Lock 2023 gets a new icon [Mid-winter weather]

    Galaxy S20 FE 5G

    Galaxy S20 FE 5G gets January 2023 security update in India

    Galaxy F22

    [U: India] Galaxy F22 getting Maintenance mode feature update

    Android Auto Update

    Android Auto getting new 8.8.6304 February 2023 update

    Samsung Tips

    Samsung One UI Tips App getting February 2023 update

    Galaxy A73 5G 2023 Update

    [U: India] Second January 2023 security update rolling for Galaxy A73 5G

    Samsung Shop App Update

    Samsung Shop new 2.0.34039 version brings Galaxy S23 offers

    Download the latest Samsung Free Application Apk

    Samsung Free App gets February 2023 update 5.5.04.34 [New Version]

  • One UI
    • All
    • One UI 4.1
    • One UI 5
    • One UI 5.1
    Samsung Good Lock New Logo 2023

    Samsung Good Lock 2023 gets a new icon [Mid-winter weather]

    Galaxy A32 Update

    Galaxy A32 getting Maintenance mode update in India

    One UI 5 Change language Per App tips

    One UI 5 Tip: How to Change the Language of a Specific App

    Are you facing this Samsung Galaxy Camera bug

    Are you facing this Samsung Galaxy Camera bug? (Video Recording)

    One UI 5.1 Keyboard adapts color palette in Dark Mode

    One UI 5.1: Keyboard adapts color palette in Dark Mode, Battery Widget added 3rd party accessories battery

    Samsung One UI 5.1 vs Apple iOS 16 Battery Status Widget

    Samsung One UI 5.1 vs Apple iOS 16 Battery Status Widget

    Rugged Galaxy XCover 6 Pro arrived on Verizon

    [U: The US] Galaxy XCover 6 Pro receiving stable One UI 5 update [Android 13]

    Samsung Galaxy M21 2021

    Samsung Galaxy M21 2021 gets Android 13 update in India

    Galaxy S9 and Note 9 One UI 5

    These five-year old Samsung phones can run One UI 5 (Android 13)

  • One UI 4.1
    Galaxy-A11-Android-12-Update

    Verizon bounded Galaxy A11 gets Android 12 update

    One UI 5 RAM Plus

    Steps to disable Samsung RAM Plus and reclaim your Galaxy phone’s storage

    Galaxy Tab S8 Ultra getting One UI 4.1.1 update in Korea

    [China Too] Galaxy Tab S8 Ultra getting One UI 4.1.1 update

    Galaxy Z Fold 3 Android 12L - One UI 4.1.1 update

    [Update: China] Galaxy Z Fold 3 Android 12L/One UI 4.1.1 update

    LineageOS 19 for Galaxy A52 4G, and Galaxy A72

    LineageOS 19 supported Samsung devices list [Updated]

    Galaxy A21 getting Android 12 update in the US

    [Unlocked Too] One UI 4.1: Galaxy A21 getting Android 12 update in the US

    Galaxy Z Fold 2 Android 12L (One UI 4.1.1) update

    [U: Verizon] Galaxy Z Fold 2: Android 12L (One UI 4.1.1) update arrives along with 09/2022 patch

    The first Galaxy Z Flip getting One UI 4.1.1 update in the USA

    The first Galaxy Z Flip getting One UI 4.1.1 update in the USA

    Samsung Galaxy Tab S7 FE

    Samsung Galaxy Tab S7 FE getting One UI 4.1.1 (Android 12L) update in India

  • One UI 5
    Samsung Good Lock New Logo 2023

    Samsung Good Lock 2023 gets a new icon [Mid-winter weather]

    Galaxy A32 Update

    Galaxy A32 getting Maintenance mode update in India

    One UI 5 Change language Per App tips

    One UI 5 Tip: How to Change the Language of a Specific App

    Are you facing this Samsung Galaxy Camera bug

    Are you facing this Samsung Galaxy Camera bug? (Video Recording)

    One UI 5.1 Keyboard adapts color palette in Dark Mode

    One UI 5.1: Keyboard adapts color palette in Dark Mode, Battery Widget added 3rd party accessories battery

    Rugged Galaxy XCover 6 Pro arrived on Verizon

    [U: The US] Galaxy XCover 6 Pro receiving stable One UI 5 update [Android 13]

    Samsung Galaxy M21 2021

    Samsung Galaxy M21 2021 gets Android 13 update in India

    Galaxy S9 and Note 9 One UI 5

    These five-year old Samsung phones can run One UI 5 (Android 13)

    Expert RAW eligible 12 Samsung devices

    Expert RAW is available in these 12 Samsung phones starting with S23 Series

  • Devices
    20 reasons to switch to a Samsung Phone

    18 reasons to switch to a Samsung Phone

    Samsung Epic In-Person Experiences with Galaxy Experience Space

    Samsung Epic In-Person Experiences with Galaxy Experience Space

    Top 5 reasons to buy Galaxy S23 Ultra

    Top 5 reasons to buy Galaxy S23 Ultra

    These reasons make Galaxy S23 Ultra as powerful gaming device

    These reasons make Galaxy S23 Ultra as powerful gaming device

    Samsung launches Galaxy S23 Series

    Samsung launches the Galaxy S23 series, now with an improved Hardware and Software

    Samsung launches new outdoor LED series

    Samsung launches new outdoor LED series

    Steps to enable Android Auto’s developer mode

    Steps to enable Android Auto’s developer mode

    Samsung flagship performance

    Samsung’s flagship CPU performance over the years: Exynos vs Snapdragon

    Samsung collaboration with The Upside Space

    Samsung collaboration with The Upside Space [The Art World With Samsung]

  • Tips
    Explore GPX feature

    Explore GPX feature on Samsung Watch 5 Pro

    These reasons make Galaxy S23 Ultra as powerful gaming device

    These reasons make Galaxy S23 Ultra as powerful gaming device

    Step to Clear DNS Cache

    Step to Clear DNS Cache on Android Devices

    Steps to enable Android Auto’s developer mode

    Steps to enable Android Auto’s developer mode

    One UI 5 Create Home screen Widget stacks

    One UI 5: Create Home screen Widget stacks

    Get enable your Gmail’s new package tracking

    You shouldn’t permit else one Gmail address on your Android phone

    Keep your phone safe and secure with these steps

    Keep your phone safe and secure with these steps

    10 mistakes can be observed commonly in Android Users

    10 mistakes can be observed commonly in Android Users

    Install Android Apps on Your Wear OS Watch with ease

    Install Android Apps on Your Wear OS Watch with ease

  • Apps
    Samsung Tips

    Samsung One UI Tips App getting February 2023 update

    Samsung Shop App Update

    Samsung Shop new 2.0.34039 version brings Galaxy S23 offers

    Download the latest Samsung Free Application Apk

    Samsung Free App gets February 2023 update 5.5.04.34 [New Version]

    Samsung Capture latest app apk

    Install the latest Samsung Capture App version 5.4.21.2

    Samsung Always On Display

    Samsung Always On Display February 2023 update is now available [8.1.25]

    Samsung Tasks edge

    Samsung Tasks (Apps) edge getting February 2023 update

    Samsung Galaxy Wearable Update

    Galaxy Wearable (Samsung Gear) February 2023 update rolling out

    Samsung Contacts App APK

    Samsung Contacts v14.1 February 2023 update rolling out

    Samsung Portrait 8.0.06 update

    Samsung Portrait getting February 2023 update – 8.0.29

  • Contact Us
No Result
View All Result
SamNews 24.
No Result
View All Result

Samsung July 2022 security patch details released

41 Samsung Vulnerabilities and Exposures (SVE)

SN24Team by SN24Team
July 7, 2022
in News
0
Samsung July 2022 security patch details released

Samsung July 2022 security patch details released

Share on FacebookShare on Twitter

Just after Google, Samsung has now released the July 2022 security patch details including Security Maintenance Release (SMR) process. This SMR package includes patches from Google and Samsung.

In July 2022 security patch details Samsung fixes 3 Criticals, and 20 High levels of CVEs while there are no low levels.

You might also like

Samsung ultra-fine semiconductor processes

Samsung is focusing on ultra-fine semiconductor processes rather than 130-65nm foundry processes

February 6, 2023
Samsung Epic In-Person Experiences with Galaxy Experience Space

Samsung Epic In-Person Experiences with Galaxy Experience Space

February 6, 2023

Samsung July 2022 security patch details released:

Critical

CVE-2022-20210,CVE-2022-20222,CVE-2022-20229

High

CVE-2022-20141,CVE-2021-4154,CVE-2022-20136,CVE-2022-25258,CVE-2022-20132,CVE-2022-21745,CVE-2021-35102,CVE-2021-35111,CVE-2021-35083, CVE-2022-20219,CVE-2022-20228,CVE-2021-0981,CVE-2022-20223,CVE-2022-20226,CVE-2022-20221,CVE-2022-20224,CVE-2022-20225,CVE-2022-20230,CVE-2021-39703,CVE-2022-20115

Moderate
None

Already included in previous updates

CVE-2022-22090,CVE-2021-0341

Not applicable to Samsung devices
CVE-2022-24958,CVE-2022-22085,CVE-2022-22087,CVE-2022-22084,CVE-2022-22083,CVE-2022-22082,CVE-2022-22086

Along with Google patches, Samsung Mobile provides 41 Samsung Vulnerabilities and Exposures (SVE) items described below, in order to improve our customer’s confidence on security of Samsung Mobile devices. Samsung security index (SSI), found in “Security software version”, SMR Jul-2022 Release 1 includes all patches from Samsung and Google. Some of the SVE items may not be included in this package, in case these items were already included in a previous maintenance release.

SVE-2021-24229(CVE-2022-30750, CVE-2022-30751, CVE-2022-30752): Improper access control vulnerability in SemWifiApTetheredClientInfo

SVE-2021-24263(CVE-2022-30753): A unique device ID leak in SecSoterService

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: December 14, 2021
Disclosure status: Privately disclosed.
Improper use of a unique device ID in unprotected SecSoterService prior to SMR Jul-2022 Release 1 allows local attackers to get the device ID without permission.
The patch removes improper use of the device ID.

SVE-2022-0352(CVE-2022-30754): Arbitrary activity start in AppLinker

Severity: High
Affected versions: Q(10), R(11), S(12)
Reported on: February 13, 2022
Disclosure status: Privately disclosed.
Implicit Intent hijacking vulnerability in AppLinker prior to SMR Jul-2022 Release 1 allows attackers to launch certain activities with privilege of AppLinker.
The patch removes unused code.

SVE-2022-0519(CVE-2022-30755): User interaction bypass in App lock

Severity: High
Affected versions: Q(10), R(11), S(12)
Reported on: March 7, 2022
Disclosure status: Privately disclosed.
Improper authentication vulnerability in AppLock prior to SMR Jul-2022 Release 1 allows attacker to bypass password confirm activity by hijacking the implicit intent.
The patch changes implicit Intent to explicit Intent to prevent hijacking from unprivileged applications.

SVE-2022-0527(CVE-2022-30756): Arbitrary activity start in Finder

Severity: High
Affected versions: Q(10), R(11), S(12)
Reported on: March 8, 2022
Disclosure status: Privately disclosed.
Implicit Intent hijacking vulnerability in Finder prior to SMR Jul-2022 Release 1 allows attackers to launch certain activities with privilege of Finder.
The patch adds proper access control logic.

SVE-2022-0533(CVE-2022-30757): Exposure of Sensitive Information in isemtelephony

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: March 9, 2022
Disclosure status: Privately disclosed.
Improper authorization in isemtelephony prior to SMR Jul-2022 Release 1 allows attacker to obtain CID without permission.
The patch removes sensitive information from return data when caller do not grant permission.

SVE-2022-0537(CVE-2022-30758): Implicit intent hijacking in Finder

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: March 9, 2022
Disclosure status: Privately disclosed.
Implicit intent hijacking vulnerability in Finder prior to SMR Jul-2022 Release 1 allows attackers to access some protected information with privilege of Finder.
The patch changes implicit intent to explicit Intent to prevent hijacking from unprivileged applications.

SVE-2022-0595(CVE-2022-33685): Unprotected dynamic receiver in Wearable Manager Installer

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: March 15, 2022
Disclosure status: Privately disclosed.
Unprotected dynamic receiver in Wearable Manager Service prior to SMR Jul-2022 Release 1 allows attacker to launch arbitrary activity and access sensitive information.
The patch removes unused code.

SVE-2022-0674(CVE-2022-33686): Exposure of Sensitive Information vulnerability in GsmAlarmManager

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: March 19, 2022
Disclosure status: Privately disclosed.
Exposure of Sensitive Information in GsmAlarmManager prior to SMR Jul-2022 Release 1 allows local attacker to access ICCID via log.
The patch fixes improper logging.

SVE-2022-0675(CVE-2022-33687): IMSI leak in telephony-common.jar via logcat

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: March 19, 2022
Disclosure status: Privately disclosed.
Exposure of Sensitive Information in telephony-common.jar prior to SMR Jul-2022 Release 1 allows local attackers to access IMSI via log.
The patch fixes incorrect implementation of logging.

SVE-2022-0677(CVE-2022-33688): Sensitive information exposure in SecTelephonyProvider

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: March 19, 2022
Disclosure status: Privately disclosed.
Sensitive information exposure vulnerability in EventType in SecTelephonyProvider prior to SMR Jul-2022 Release 1 allows local attackers with log access permission to get IMSI through device log.
The patch adds anonymization process of the data.

SVE-2022-0681(CVE-2022-33689): Possible to change preferred network type in TelephonyUI

Severity: High
Affected versions: Q(10), R(11), S(12)
Reported on: March 20, 2022
Disclosure status: Privately disclosed.
Improper access control vulnerability in TelephonyUI prior to SMR Jul-2022 Release 1 allows attackers to change preferred network type by unprotected binder call.
The patch adds proper permission check in TelephonyUI to prevent unauthorized access.

SVE-2022-0687(CVE-2022-33690): Path traversal vulnerability in Contacts Storage

Severity: Moderate
Affected versions: S(12)
Reported on: March 21, 2022
Disclosure status: Privately disclosed.
Improper input validation in Contacts Storage prior to SMR Jul-2022 Release 1 allows attacker to access arbitrary file.
The patch adds proper validation logic to prevent path traversal.

SVE-2022-0689(CVE-2022-33691): TOCTOU vulnerability in score driver

Severity: Moderate
Affected versions: Q(10), R(11), S(12) devices with Exynos 9820 chipset
Reported on: March 21, 2022
Disclosure status: Privately disclosed.
A possible race condition vulnerability in score driver prior to SMR Jul-2022 Release 1 can allow local attackers to interleave malicious operations.
The patch adds proper synchronization points to avoid all possibility of a race condition.

SVE-2022-0719(CVE-2022-33692): Exposure of IMSI through Logcat in Message App

Severity: Moderate
Affected versions: R(11), S(12)
Reported on: March 23, 2022
Disclosure status: Privately disclosed.
Exposure of sensitive information in Messaging application prior to SMR Jul-2022 Release 1 allows local attacker to access IMSI and ICCID via log.
The patch fixes improper logging.

SVE-2022-0723(CVE-2022-33693): Exposure of Sensitive Information vulnerability in CID Manager

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: March 23, 2022
Disclosure status: Privately disclosed.
Exposure of sensitive information in CID Manager prior to SMR Jul-2022 Release 1 allows local attacker to access ICCID via log.
The patch fixes improper logging.

SVE-2022-0737(CVE-2022-33694): Disclosure of Wi-Fi Connection information in CSC

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: March 25, 2022
Disclosure status: Privately disclosed.
Exposure of sensitive information in CSC application prior to SMR Jul-2022 Release 1 allows local attacker to access Wi-Fi information via unprotected intent broadcasting.
The patch adds proper permission while sending broadcast with sensitive information to prevent unauthorized access.

SVE-2022-0792(CVE-2022-33695): Use of improper permission in InputManagerService

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: March 29, 2022
Disclosure status: Privately disclosed.
Use of improper permission in InputManagerService prior to SMR Jul-2022 Release 1 allows unauthorized access to the service.
The patch modifies with proper permission.

SVE-2022-0813(CVE-2022-33696): Sensitive information exposure through logcat in Telephony

Severity: Moderate
Affected versions: S(12)
Reported on: March 31, 2022
Disclosure status: Privately disclosed.
Exposure of sensitive information in Telephony service prior to SMR Jul-2022 Release 1 allows local attacker to access IMSI and ICCID via log.
The patch fixes improper logging.

SVE-2022-0820(CVE-2022-33697): Sensitive information exposure in ImsCore

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: April 1, 2022
Disclosure status: Privately disclosed.
Sensitive information exposure vulnerability in ImsServiceSwitchBase in ImsCore prior to SMR Jul-2022 Release 1 allows local attackers with log access permission to get IMSI through device log.
The patch blocks output the data in commercial product.

SVE-2022-0821(CVE-2022-33698): ICCID leak in Telecom via logcat

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: April 1, 2022
Disclosure status: Privately disclosed.
Exposure of sensitive information in Telecom application prior to SMR Jul-2022 Release 1 allows local attackers to access ICCID via log.
The patch fixes incorrect implementation of logging.

SVE-2022-0834(CVE-2022-33699): Exposure of Sensitive Information vulnerability in getDsaSimImsi in TelephonyUI

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: April 3, 2022
Disclosure status: Privately disclosed.
Exposure of sensitive information in getDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 allows local attacker to access IMSI via log.
The patch fixes improper logging.

SVE-2022-0835(CVE-2022-33700): Exposure of Sensitive Information vulnerability in putDsaSimImsi in TelephonyUI

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: April 3, 2022
Disclosure status: Privately disclosed.
Exposure of sensitive information in putDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 allows local attacker to access IMSI via log.
The patch fixes improper logging.

SVE-2022-0873(CVE-2022-33701): Improper access control vulnerability in KnoxCustomManagerService

Severity: Moderate
Affected versions: Q(10), R(11), S(12)
Reported on: April 7, 2022
Disclosure status: Privately disclosed.
Improper access control vulnerability in KnoxCustomManagerService prior to SMR Jul-2022 Release 1 allows attacker to call PowerManaer.goToSleep method by sending broadcast intent.
The patch adds protect broadcast intent to prevent unauthorized application send broadcast intent.

SVE-2022-0937(CVE-2022-33702): Knoxguard lock disabled by factory reset in Keyguard

Severity: High
Affected versions: Q(10), R(11), S(12)
Reported on: April 17, 2022
Disclosure status: Privately disclosed.
Improper authorization vulnerability in Knoxguard prior to SMR Jul-2022 Release 1 allows local attacker to disable keyguard and bypass Knoxguard lock by factory reset.
The patch fixes Keyguard state to enforce Knoxguard lock after factory reset.

SVE-2022-0946(CVE-2022-33703): Arbitrary activity start in CACertificateInfo

Severity: High
Affected versions: Q(10), R(11), S(12)
Reported on: April 17, 2022
Disclosure status: Privately disclosed.
Improper validation vulnerability in CACertificateInfo prior to SMR Jul-2022 Release 1 allows attackers to launch certain activities.
The patch adds proper validation logic to prevent privilege escalation.

SVE-2022-0952(CVE-2022-33704): Arbitrary activity start in ucmRetParcelable

Severity: High
Affected versions: Q(10), R(11), S(12)
Reported on: April 18, 2022
Disclosure status: Privately disclosed.
Improper validation vulnerability in ucmRetParcelable of KnoxSDK prior to SMR Jul-2022 Release 1 allows attackers to launch certain activities.
The patch adds proper validation logic to prevent privilege escalation.

Some SVE items included in the Samsung Security Update cannot be disclosed at this time.

Join SamNews 24 On Telegram

Source: Samsung
Tags: SamsungSamsung BulletinSamsung Bulletin July 2022Samsung July 2022 security patchSamsung July 2022 Update
SN24Team

SN24Team

We at SamNews24 are here to provide the latest and in-depth coverage of Samsung’s latest achievements.

Related Stories

Samsung ultra-fine semiconductor processes

Samsung is focusing on ultra-fine semiconductor processes rather than 130-65nm foundry processes

by SN24Team
February 6, 2023
0

Reportedly, Samsung is suffering from a semiconductor talent shortage in its semiconductor consignment production, research, and development manpower to the...

Samsung Epic In-Person Experiences with Galaxy Experience Space

Samsung Epic In-Person Experiences with Galaxy Experience Space

by Ragini
February 6, 2023
0

Lately, on February 1 in San Francisco, 2023, Samsung opened the entrance to the refreshed world of the Galaxy and...

Behold Galaxy S23 Ultra film

Samsung released Behold Short Film Shot on Galaxy S23 Ultra

by SN24Team
February 6, 2023
0

Samsung has officially released a short film directed by Ridley Scott. Partnering with Samsung, Scott created the beautiful film with...

Galaxy Store Buds2 and Note 20 February 2023 update

Galaxy Note 20 February 2023 security, Galaxy Buds 2, Galaxy Store Material You Icon update rolling out

by SN24Team
February 6, 2023
0

Samsung is one of the best companies when it comes to rolling out the latest updates for its smartphones. The...

Recommended

Gamers Around the World Meet Odyssey Ark Samsung (4)

Gamers Around the World Meet Odyssey Ark

November 10, 2022
Samsung sold over 1.2 million devices

Samsung sold over 1.2 million devices on festive sale in India

September 26, 2022

Popular Story

  • Galaxy S23 Ultra live hands-on video and images leaked

    Galaxy S23 Ultra live hands-on video and images leaked

    881 shares
    Share 352 Tweet 220
  • Exclusive: Galaxy S23 listed officially on AT&T with all colors, availability and price [The US]

    784 shares
    Share 314 Tweet 196
  • 11 hours Battery Drain Test: Samsung S23 Ultra vs iPhone 14 Pro Max vs S22 Ultra vs Xiaomi 13 Pro vs OnePlus 11

    643 shares
    Share 257 Tweet 161
  • Galaxy S23 Series advertisement spotted in France ahead of launch

    629 shares
    Share 252 Tweet 157
  • Galaxy S22 Ultra vs S23 Ultra side and front view first look

    835 shares
    Share 334 Tweet 209
SamNews 24

SamNews24.com website provides Samsung’s latest news, software updates information, tips and tricks, and the latest Samsung devices specifications. SamNews24 team works 24×7 to bring news related to the One UI, Smartphones, Tablets, Computers, TVs, IoT, and more.

  • About Us
  • Updates
  • News
  • Privacy Policy
  • Sitemap

© 2023 SamNews24

No Result
View All Result
  • Home
  • News
  • Updates
  • One UI
  • One UI 4.1
  • One UI 5
  • Devices
  • Tips
  • Apps
  • Contact Us

© 2023 SamNews24

Go to mobile version