PT-2023-18233 · Google+1 · Android 12+2

Hackhackdump

Publicado

2023-03-16

Atualizado

2023-03-23

CVE-2023-21464

CVSS v3.1

4.0

Média

Vetor

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions Samsung Calendar versions prior to 12.4.02.9000 in Android 13 Samsung Calendar versions prior to 12.3.08.2000 in Android 12

Description The issue is related to improper access control, allowing a local attacker to configure an improper status. This could potentially lead to unauthorized access or modifications.

Recommendations For Samsung Calendar versions prior to 12.4.02.9000 in Android 13, update to version 12.4.02.9000 or later. For Samsung Calendar versions prior to 12.3.08.2000 in Android 12, update to version 12.3.08.2000 or later.

Correção

Improper Preservation of Permissions

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-281

Identificadores relacionados

CVE-2023-21464

Produtos afetados

Android 12

Android 13

Samsung Calendar

PT-2023-18233 · Google+1 · Android 12+2

CVE-2023-21464

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4