Improper input validation in Samsung Internet prior to version 29.0.0.48 allows local attackers to inject arbitrary script.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NSamsung Internet
APPSamsung< 29.0.0.48
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Related vulnerabilities
CVE-2021-25400HIGH7.8ten sam produkt
Intent redirection vulnerability in Samsung Internet prior to version 14.0.1.20 allows attacker to execute pri...
CVE-2021-25418HIGH7.8ten sam produkt
Improper component protection vulnerability in Samsung Internet prior to version 14.0.1.62 allows untrusted ap...
CVE-2026-21036MEDIUM6.3ten sam produkt
Improper authorization in Samsung Internet prior to version 30.0.0.39 allows local attackers to access sensiti...
CVE-2025-20994MEDIUM4.5ten sam produkt
Improper handling of insufficient permission in SyncClientProvider in Samsung Internet installed on non-Samsun...
CVE-2025-20995MEDIUM4.9ten sam produkt
Improper handling of insufficient permission in ClientProvider in Samsung Internet installed on non-Samsung De...