exploitDog

GHSA-6wwj-crch-j32j

Опубликовано: 12 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 3.3

Описание

Improper access control vulnerability in Samsung Members prior to version 13.6.08.5 allows local attacker to execute call function without CALL_PHONE permission.

Improper access control vulnerability in Samsung Members prior to version 13.6.08.5 allows local attacker to execute call function without CALL_PHONE permission.

Ссылки

EPSS

Процентиль: 19%

0.00059

Низкий

3.3 Low

CVSS3

CVE ID

Дефекты

CWE-284

CWE-863

Связанные уязвимости

CVE-2022-28777

CVSS3: 4.3

nvd

почти 4 года назад

Improper access control vulnerability in Samsung Members prior to version 13.6.08.5 allows local attacker to execute call function without CALL_PHONE permission.

EPSS

Процентиль: 19%

0.00059

Низкий

3.3 Low

CVSS3

CVE ID

Дефекты

CWE-284

CWE-863