Samsung Mobile Samsung Email vulnerabilities

CVE-2022-36864 [HIGH] CWE-284 CVE-2022-36864: Improper access control and intent redirection in Samsung Email prior to 6.1.70.20 allows attacker t Improper access control and intent redirection in Samsung Email prior to 6.1.70.20 allows attacker to access specific formatted file and execute privileged behavior.

CVE-2022-36837 [MEDIUM] CWE-285 CVE-2022-36837: Intent redirection vulnerability using implicit intent in Samsung email prior to version 6.1.70.20 a Intent redirection vulnerability using implicit intent in Samsung email prior to version 6.1.70.20 allows attacker to get sensitive information.

CVE-2022-22287 [MEDIUM] CWE-20 CVE-2022-22287: Abitrary file access vulnerability in Samsung Email prior to 6.1.60.16 allows attacker to read isola Abitrary file access vulnerability in Samsung Email prior to 6.1.60.16 allows attacker to read isolated data in sandbox.

CVE-2021-25376 [MEDIUM] CWE-200 CVE-2021-25376: An improper synchronization logic in Samsung Email prior to version 6.1.41.0 can leak messages in ce An improper synchronization logic in Samsung Email prior to version 6.1.41.0 can leak messages in certain mailbox in plain text when STARTTLS negotiation is failed.

CVE-2021-25375 [MEDIUM] CWE-200 CVE-2021-25375: Using predictable index for attachments in Samsung Email prior to version 6.1.41.0 allows remote att Using predictable index for attachments in Samsung Email prior to version 6.1.41.0 allows remote attackers to get attachments of another emails when users open the malicious attachment.