CVE-2024-34597

Published: Jul 2, 2024Modified: Nov 21, 2024

3.3

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Exploitability: 1.8 / Impact: 1.4

Source: NVD

Description

Improper input validation in Samsung Health prior to version 6.27.0.113 allows local attackers to write arbitrary document files to the sandbox of Samsung Health. User interaction is required for triggering this vulnerability.

Affected (1)

Products: Samsung: Health

Samsung

1 product

Health

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Samsung Health	Before 6.27.0.113

References (2)

https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=07

Source: mobile.security@samsung.com

Vendor Advisory

https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=07

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.