Samsung · Samsung Internet · CVE-2024-20837
**Name of the Vulnerable Software and Affected Versions**
Samsung Internet versions prior to 24.0.0.41
**Description**
The issue arises from improper handling of granting permission for Trusted Web Activities in Samsung Internet, allowing local attackers to grant permission to their own TWA WebApps without user interaction.
**Recommendations**
For versions prior to 24.0.0.41, update to version 24.0.0.41 or later to resolve the issue.