exploitDog

GHSA-58m9-xprw-8c77

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.7

Описание

Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure Folder without authorization.

Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure Folder without authorization.

Ссылки

EPSS

Процентиль: 23%

0.00077

Низкий

5.7 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2021-25507

CVSS3: 5.7

nvd

больше 4 лет назад

Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure Folder without authorization.

EPSS

Процентиль: 23%

0.00077

Низкий

5.7 Medium

CVSS3

CVE ID

Дефекты

CWE-863