CVE-2022-23998
MEDIUMCamera <11.1.02.16, <10.5.03.77, <9.0.6.68 - Info Disclosure
Title source: llmDescription
Improper access control vulnerability in Camera prior to versions 11.1.02.16 in Android R(11), 10.5.03.77 in Android Q(10) and 9.0.6.68 in Android P(9) allows untrusted applications to take a picture in screenlock status.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=2
Scores
CVSS v3
6.2
EPSS
0.0018
EPSS Percentile
39.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-20
CWE-863
Status
published
Products (1)
samsung/camera
< 11.1.02.16
Published
Feb 11, 2022
Tracked Since
Feb 18, 2026