VYPR

Waterplugin

by Samsung Mobile

CVEs (3)

  • CVE-2022-36873Sep 9, 2022
    risk 0.00cvss epss 0.00

    Improper restriction of broadcasting Intent in GalaxyStoreBridgePageLinker of?Waterplugin prior to version 2.2.11.22081151 leaks MAC address of the connected Bluetooth device.

  • CVE-2022-36874Sep 9, 2022
    risk 0.00cvss epss 0.00

    Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751 allows attacker to access device IMEI and Serial number.

  • CVE-2022-36875Sep 9, 2022
    risk 0.00cvss epss 0.00

    Improper restriction of broadcasting Intent in SaWebViewRelayActivity of?Waterplugin prior to version 2.2.11.22081151 allows attacker to access the file without permission.