๐Ÿ” CVE Alert

CVE-2023-21465

MEDIUM 5.5
CVSS Score
5.5
EPSS Score
0.0%
EPSS Percentile
0th

Improper access control vulnerability in BixbyTouch prior to version 3.2.02.5 in China models allows untrusted applications access local files.

CWE CWE-284
Vendor samsung mobile
Product bixby touch
Published Mar 16, 2023
Last Updated Aug 2, 2024
Stay Ahead of the Next One

Get instant alerts for samsung mobile bixby touch

Be the first to know when new medium vulnerabilities affecting samsung mobile bixby touch are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Affected Versions

Samsung Mobile / Bixby Touch
unspecified < 3.2.02.5

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
security.samsungmobile.com: https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=03