CVE-2022-39906
Description
Improper access control in Samsung SecTelephonyProvider prior to SMR Dec-2022 Release 1 leaks message information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Improper access control in Samsung SecTelephonyProvider prior to SMR Dec-2022 Release 1 leaks message information.
Vulnerability
An improper access control vulnerability exists in SecTelephonyProvider on Samsung devices prior to SMR Dec-2022 Release 1 [1]. This allows unauthorized access to message information.
Exploitation
An attacker can exploit this vulnerability to access message information. The exact attack vector is not detailed, but it likely requires local access or a malicious application.
Impact
Successful exploitation allows an attacker to read message information, leading to information disclosure.
Mitigation
The vulnerability is fixed in SMR Dec-2022 Release 1 [1]. Users should update their devices to the latest security patch level.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: < SMR Dec-2022 Release 1
- Range: Q(10), R(11), S(12), T(13)
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.