PT-2024-26093 · Samsung · Samsung Video Player
Ycmint
·
Published
2024-10-07
·
Updated
2026-01-08
·
CVE-2024-34672
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
SamsungVideoPlayer versions prior to 7.3.29.1
SamsungVideoPlayer versions prior to 7.3.36.1
SamsungVideoPlayer versions prior to 7.3.41.230
Description
The issue is related to improper input validation in SamsungVideoPlayer, allowing local attackers to access video files of other users.
Recommendations
For versions prior to 7.3.29.1, update to version 7.3.29.1 or later.
For versions prior to 7.3.36.1, update to version 7.3.36.1 or later.
For versions prior to 7.3.41.230, update to version 7.3.41.230 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Samsung Video Player