CVE-2023-21441

CVSS 7.4 HIGHEPSS 0.1%CWE-345

Insufficient Verification of Data Authenticity vulnerability in Routine prior to versions 2.6.30.6 in Android Q(10), 3.1.21.10 in Android R(11) and 3.5.2.23 in Android S(12) allows local attacker to access protected files via unused code.

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N

Productos afectados

Samsung Mobile · Routine

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=02