CVE-2022-23994
First published: Fri Feb 11 2022(Updated: )
An Improper access control vulnerability in StBedtimeModeReceiver in Wear OS 3.0 prior to Firmware update Feb-2022 Release allows untrusted applications to change bedtime mode without a proper permission.
Credit: mobile.security@samsung.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samsung Wear Os | <3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2022-23994.
What is the severity level of CVE-2022-23994?
The severity level of CVE-2022-23994 is medium.
How can untrusted applications change bedtime mode in Wear OS 3.0?
Untrusted applications can change bedtime mode in Wear OS 3.0 by exploiting this vulnerability.
Which software versions are affected by CVE-2022-23994?
CVE-2022-23994 affects Wear OS 3.0 prior to the February 2022 firmware update.
How can I fix the vulnerability CVE-2022-23994?
To fix the vulnerability CVE-2022-23994, update Wear OS to the latest firmware version released in February 2022.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/samsung
- canonical/samsung wear os