Implicit Intent Hijacking Vulnerability in Samsung Internet Browser
CVE-2022-36835

3.3LOW

Key Information:

Vendor: Samsung
Status: Samsung Internet Browser
Vendor: CVE Published:; 5 August 2022

What is CVE-2022-36835?

An Implicit Intent hijacking vulnerability exists in Samsung Internet Browser prior to version 17.0.7.34. This flaw allows attackers to exploit the browser and gain unauthorized access to arbitrary files, potentially leading to data breaches and privacy violations. Users of affected versions are advised to update their browsers to the latest version to mitigate risks associated with this vulnerability.

Affected Version(s)

Samsung Internet Browser < 17.0.7.34

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2...

x_refsource_MISC

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 5, 2022
Vulnerability Reserved
Jul 27, 2022