First published: Fri Sep 09 2022(Updated: )
Improper Authorization vulnerability in Photo Editor prior to SMR Sep-2022 Release 1 allows physical attackers to read internal application data.
Credit: mobile.security@samsung.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Android | =11.0 | |
Samsung Photo Editor | <3.0.23.43 | |
Google Android | =12.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-36857 is an Improper Authorization vulnerability in Photo Editor prior to SMR Sep-2022 Release 1.
CVE-2022-36857 affects Android devices running Google Android 11.0 and Samsung Photo Editor up to version 3.0.23.43.
The severity of CVE-2022-36857 is low, with a severity value of 2.4.
Physical attackers can exploit CVE-2022-36857 to read internal application data in Photo Editor.
To fix CVE-2022-36857, update your Samsung Photo Editor app to the latest version available.