CVE-2022-39891

MEDIUM4.3Memory safety

JSON export Create alert

Description

Heap overflow vulnerability in parse_pce function in libsavsaudio.so in Editor Lite prior to version 4.0.41.3 allows attacker to get information.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

Low

Integrity

None

Availability

None

Affected products

Samsung Mobile / Editor Liteunspecified – 4.0.41.3

References

MISChttps://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=11