CVE-2022-28542

Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.40.5 allows local attackers to access privileged content providers as Galaxy Store permission.
Configurations

Configuration 1 (hide)

cpe:2.3:a:samsung:galaxy_store:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-04-11 20:15

Updated : 2024-02-28 19:09


NVD link : CVE-2022-28542

Mitre link : CVE-2022-28542

CVE.ORG link : CVE-2022-28542


JSON object : View

Products Affected

samsung

  • galaxy_store
CWE
CWE-863

Incorrect Authorization

CWE-284

Improper Access Control