CVE-2022-23998

MEDIUM

Camera <11.1.02.16, <10.5.03.77, <9.0.6.68 - Info Disclosure

Title source: llm
STIX 2.1

Description

Improper access control vulnerability in Camera prior to versions 11.1.02.16 in Android R(11), 10.5.03.77 in Android Q(10) and 9.0.6.68 in Android P(9) allows untrusted applications to take a picture in screenlock status.

References (1)

Core 1
Core References

Scores

CVSS v3 6.2
EPSS 0.0059
EPSS Percentile 44.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-20 CWE-863
Status published
Products (1)
samsung/camera < 11.1.02.16
Published Feb 11, 2022
Tracked Since Feb 18, 2026