CVE

CVE-2018-9140

CVE-2018-9140

On Samsung mobile devices with M(6.0) software, the Email application allows XSS via an event attribute and arbitrary file loading via a src attribute, aka SVE-2017-10747.

Source: CVE-2018-9140

Exit mobile version