Email Reading Vulnerability in Samsung Galaxy S6 Devices
CVE-2016-2565

3.3LOW

Key Information:

Vendor: Samsung
Status: Galaxy S6 Firmware
Vendor: CVE Published:; 13 April 2017

What is CVE-2016-2565?

A vulnerability in Samsung's SecEmailSync application on Galaxy S6 devices allows attackers to access and read sent email messages without proper authorization. This could lead to a breach of privacy and sensitive information, enabling malicious actors to exploit personal communications. Users of the Galaxy S6 should take precautionary measures and remain informed about their device's security status.

References

http://www.securityfocus.com/bid/97658

vdb-entryx_refsource_BID

https://github.com/ud2/advisories/tree/master/android/sam...

x_refsource_MISC

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 13, 2017
Vulnerability Reserved
Feb 25, 2016