CVE-2022-22287 — Improper Input Validation in Mobile Samsung Email

Severity

4.6MEDIUMNVD

CNA3.9

EPSS

0.1%

top 79.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedJan 10

Latest updateJan 11

Description

Abitrary file access vulnerability in Samsung Email prior to 6.1.60.16 allows attacker to read isolated data in sandbox.

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 0.9 | Impact: 3.6

GHSA

GHSA-vpwc-jhj4-x9q2: Abitrary file access vulnerability in Samsung Email prior to 6↗2022-01-11

▶

CVEList

CVE-2022-22287: Abitrary file access vulnerability in Samsung Email prior to 6↗2022-01-07

▶