Primary

Context

Samsung Internet Improper Permission Handling Vulnerability in ClientProvider on Non-Samsung Devices

Vulnerability

Patched

A vulnerability exists in Samsung Internet's ClientProvider, specifically in versions prior to 28.0.0.59, on non-Samsung devices. This vulnerability arises from improper handling of permissions, allowing local attackers to read and write arbitrary files. The issue has been addressed in version 28.0.0.59.

Impact

Exploitation of this vulnerability could lead to unauthorized access to read and write files, potentially allowing for the manipulation or exfiltration of sensitive data.

Remediation

Users can update to Samsung Internet version 28.0.0.59 to address this vulnerability.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

6.7

exploitability

3.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

6.7

exploitability

3.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Internet Improper Permission Handling Vulnerability in ClientProvider on Non-Samsung Devices

Vulnerability

Impact

Remediation

Affected Products

Samsung Internet

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating