CVE-2022-36875
published 2022-09-09CVE-2022-36875: Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151 allows attacker to access the file…
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151 allows attacker to access the file without permission.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | galaxy_watch_plugin | < 2.2.11.22081151 | 2.2.11.22081151 |
| samsung_mobile | com.samsung.android.waterplugin | >= unspecified < 2.2.11.22081151 | 2.2.11.22081151 |