CVE-2022-24003 is a vulnerability in Samsung Bixby Vision
Published on February 11, 2022
Exposure of Sensitive Information vulnerability in Bixby Vision prior to version 3.7.50.6 allows attackers to access internal data of Bixby Vision via unprotected intent.
Vulnerability Analysis
CVE-2022-24003 can be exploited with local system access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a small impact on confidentiality, a small impact on integrity and availability.
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2022-24003 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2022-24003
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-24003 are published in Samsung Bixby Vision:
Affected Versions
Samsung Mobile Bixby Vision:- Version - and below 3.7.50.6 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.