CVE-2022-27841
First published: Mon Apr 11 2022(Updated: )
Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical attacker to view the screen that is previously running without authentication
Credit: mobile.security@samsung.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samsung Pass | <3.7.07.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2022-27841?
CVE-2022-27841 has been rated as a high severity vulnerability due to improper exception handling.
How do I fix CVE-2022-27841?
To fix CVE-2022-27841, update Samsung Pass to version 3.7.07.5 or later.
Who is affected by CVE-2022-27841?
CVE-2022-27841 affects users of Samsung Pass versions prior to 3.7.07.5 on Android devices.
What is the impact of CVE-2022-27841?
The impact of CVE-2022-27841 allows physical attackers to view screens previously accessed in Samsung Pass without authentication.
Is there a workaround for CVE-2022-27841?
While the recommended solution is to update, users may limit physical access to devices as a temporary workaround for CVE-2022-27841.
- agent/weakness
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/samsung
- canonical/samsung pass