Lucene search

[email protected]NVD:CVE-2022-39872

HistoryOct 07, 2022 - 3:15 p.m.

CVE-2022-39872

2022-10-0715:15:22

CWE-280

CWE-755

[email protected]

web.nvd.nist.gov

cve-2022-39872

sharelive

bluetooth

mac address

security vulnerability

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

EPSS

Percentile

5.1%

JSON

Improper restriction of broadcasting Intent in ShareLive prior to version 13.2.03.5 leaks MAC address of the connected Bluetooth device.

Affected configurations

Nvd

Node

samsungshareliveRange<13.2.03.5

VendorProductVersionCPE
samsungsharelive*cpe:2.3:a:samsung:sharelive:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
samsung	sharelive	*	cpe:2.3:a:samsung:sharelive::::::::

References

security.samsungmobile.com/serviceWeb.smsb?year=2022&month=10

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2022-39872

cvelist1 prion1 cve1