Описание
An issue was discovered on Samsung mobile devices with Q(10.0) (with ONEUI 2.1) software. In the Lockscreen state, the Quick Share feature allows unauthenticated downloads, aka file injection. The Samsung ID is SVE-2020-17760 (August 2020).
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*
EPSS
Процентиль: 5%
0.00021
Низкий
4.6 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-306
Связанные уязвимости
github
больше 3 лет назад
An issue was discovered on Samsung mobile devices with Q(10.0) (with ONEUI 2.1) software. In the Lockscreen state, the Quick Share feature allows unauthenticated downloads, aka file injection. The Samsung ID is SVE-2020-17760 (August 2020).
EPSS
Процентиль: 5%
0.00021
Низкий
4.6 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-306