On Samsung mobile devices with M(6.0) software, the Email application allows XSS via an event attribute and arbitrary file loading via a src attribute, aka SVE-2017-10747.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
samsung samsung mobile 6.0 |