CVE-2022-36833
HIGHSamsung Game Optimizing Service < 3.3.04.0 - Improper Privilege Management via Package Name Manipulation
Title source: llmDescription
Improper Privilege Management vulnerability in Game Optimizing Service prior to versions 3.3.04.0 in Android 10, and 3.5.04.8 in Android 11 and above allows local attacker to execute hidden function for developer by changing package name.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=08
Scores
CVSS v3
7.3
EPSS
0.0004
EPSS Percentile
13.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
Details
CWE
CWE-269
Status
published
Products (1)
samsung/gameoptimizingservice
< 3.3.04.0
Published
Aug 05, 2022
Tracked Since
Feb 18, 2026