CVE-2022-36875

Summary

Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151 allows attacker to access the file without permission.

Affected Software

VendorProductVersion RangeStatus
Samsung Mobilecom.samsung.android.waterpluginunspecified < 2.2.11.22081151affected

Weaknesses

  • CWE-284: CWE-284: Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References