← Back

CVE-2023-30641

nvd nist
Published: Jul 6, 2023Modified: Nov 21, 2024

JSON object

Loading...
4.3
Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Exploitability: 0.7 / Impact: 3.6
Source: NVD

Description

Improper access control vulnerability in Settings prior to SMR Jul-2023 Release 1 allows physical attacker to use restricted user profile to access device owner's google account data.

Affected (9)

Products: Samsung: Android
Samsung
1 product
Android
Configuration A
9 vulnerable
Vulnerable SoftwareAffected Versions
Samsung
Android
Version 13.0 smr-apr-2023-r1
Android
Version 13.0 smr-dec-2022-r1
Android
Version 13.0 smr-feb-2023-r1
Android
Version 13.0 smr-jan-2023-r1
Android
Version 13.0 smr-jun-2023-r1
Android
Version 13.0 smr-mar-2023-r1
Android
Version 13.0 smr-may-2023-r1
Android
Version 13.0 smr-nov-2022-r1
Android
Version 13.0 smr-oct-2022-r1

References (2)

Source: mobile.security@samsung.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.