CVE-2022-39893

LOW

Samsung Galaxy Buds Pro Manage - Log Information Exposure

Title source: rule

Description

Sensitive information exposure vulnerability in FmmBaseModel in Galaxy Buds Pro Manage prior to version 4.1.22092751 allows local attackers with log access permission to get device identifier data through device log.

References (1)

Core 1

Core References

Vendor Advisory

https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=11

Scores

CVSS v3 3.3

EPSS 0.0006

EPSS Percentile 18.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-532

Status published

Products (1)

samsung/galaxy_buds_pro_manage < 4.1.22092751

Published Nov 09, 2022

Tracked Since Feb 18, 2026