CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-36859

Improper input validation vulnerability in SmartTagPlugin prior to version 1.2.21-6 allows privileged attackers to trigger a XSS on a victim's devices.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 32.6%

CVSS Severity

CVSS v3 Score 5.7

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=09
https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=09

Products affected by CVE-2022-36859

Samsung » Smarttagplugin » Version: N/A

cpe:2.3:a:samsung:smarttagplugin:-
Samsung » Smarttagplugin » Version: 1.2.15-6

cpe:2.3:a:samsung:smarttagplugin:1.2.15-6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-36859

Products

Pricing

Contact Us