How severe is CVE-2022-36874?

CVE-2022-36874 has a CVSS v3 score of 5.9 (MEDIUM).

CVE-2022-36874

Name: galaxy_watch_plugin
Author: samsung

5.9MEDIUM

Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751 allows attacker to access device IMEI and Serial number.

Published: 9/9/2022Updated: 11/21/2024

Description

Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751 allows attacker to access device IMEI and Serial number.

AI AnalysisPowered by AI

Affected Products

samsunggalaxy_watch_plugin

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=09
Vendor Advisory
https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=09
Vendor Advisory