CVE-2015-7889

Name of the Vulnerable Software and Affected Versions Samsung S6 Edge versions prior to October 2015 MR

Description The issue concerns weak permissions in the SecEmailComposer/EmailComposer application. This weakness might allow remote attackers with knowledge of the local email address to obtain sensitive information via a crafted application that sends a crafted intent to the com.samsung.android.email.intent.action.QUICK REPLY BACKGROUND service action.

Recommendations For Samsung S6 Edge versions prior to October 2015 MR, update to a version released after the October 2015 MR to resolve the issue.