PT-2024-33515 · Samsung+1 · Samsung Video Player+3
Elias Schröder
·
Published
2024-11-05
·
Updated
2024-11-13
·
CVE-2024-49404
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Samsung Video Player versions prior to 7.3.29.1 on Android 12
Samsung Video Player versions prior to 7.3.36.1 on Android 13
Samsung Video Player versions prior to 7.3.41.230 on Android 14
Description
The issue is related to improper access control in the Samsung Video Player, allowing physical attackers to access video files of other users. This could lead to unauthorized access to sensitive information.
Recommendations
For Samsung Video Player on Android 12, update to version 7.3.29.1 or later.
For Samsung Video Player on Android 13, update to version 7.3.36.1 or later.
For Samsung Video Player on Android 14, update to version 7.3.41.230 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Android 12
Android 13
Android 14
Samsung Video Player