PT-2022-19243 · Smr · Smr

Published

2022-06-07

Updated

2022-06-11

CVE-2022-28794

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions SMR versions prior to Jun-2022 Release 1

Description The issue allows local attackers to expose sensitive information, including SIM card details, through the low-battery dumpstate log.

Recommendations For versions prior to Jun-2022 Release 1, update to the Jun-2022 Release 1 or later to resolve the issue.

Fix

Exposure of Resource to Wrong Sphere

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2022-28794

Smr