Orangecat

**Name of the Vulnerable Software and Affected Versions** My Files versions prior to SMR Sep-2024 Release 1 **Description** The issue is related to improper authorization in My Files, allowing local attackers to access restricted data. This can be exploited by local attackers. **Recommendations** For versions prior to SMR Sep-2024 Release 1, update to SMR Sep-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to My Files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Samsung mobile devices versions prior to SMR Feb-2024 Release 1 **Description** The issue allows local attackers to get sensitive information due to an implicit intent hijacking vulnerability in Smart Suggestions. **Recommendations** For versions prior to SMR Feb-2024 Release 1, update to the SMR Feb-2024 Release 1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Samsung Account versions prior to 14.5.00.7 **Description** The issue concerns the use of implicit intent for sensitive communication in the startMandatoryCheckActivity function within Samsung Account. This allows attackers to access arbitrary files using the privileges of the Samsung Account. **Recommendations** For versions prior to 14.5.00.7, update to version 14.5.00.7 or later to resolve the issue.