PT-2023-22835 · Settings · Settings

Gerrit Hübbers

Published

2023-07-06

Updated

2023-07-12

CVE-2023-30641

CVSS v3.1

4.3

Medium

Vector

AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Settings versions prior to SMR Jul-2023 Release 1

Description The issue is related to improper access control, allowing a physical attacker to use a restricted user profile and access the device owner's Google account data.

Recommendations For versions prior to SMR Jul-2023 Release 1, update to the SMR Jul-2023 Release 1 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-30641

Affected Products

Settings

PT-2023-22835 · Settings · Settings

CVE-2023-30641

Related Identifiers

Affected Products

References · 5