Improper Access Control Vulnerability in Samsung SearchWidget: Arbitrary URL and Local File Loading

Improper Access Control Vulnerability in Samsung SearchWidget: Arbitrary URL and Local File Loading

CVE-2022-24923 · LOW Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Improper access control vulnerability in Samsung SearchWidget prior to versions 2.3.00.6 in China models allows untrusted applications to load arbitrary URL and local files in webview.

Learn more about our Web App Pen Testing.