### [CVE-2021-25441](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25441)
![](https://img.shields.io/static/v1?label=Product&message=AR%20Emoji%20Editor&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=-%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-20%3A%20Improper%20Input%20Validation&color=brightgreen)

### Description

Improper input validation vulnerability in AR Emoji Editor prior to version 4.4.03.5 in Android Q(10.0) and above allows untrusted applications to access arbitrary files with an escalated privilege.

### POC

#### Reference
- https://security.samsungmobile.com/serviceWeb.smsb?year=2021&month=7

#### Github
No PoCs found on GitHub currently.