CVE-2023-30705

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 10, 2023
Updated: Nov 7, 2023
CWE ID 863

Summary

CVE-2023-30705 is a vulnerability affecting the Galaxy Store before version 4.5.56.6. This issue stems from an incorrect handling of incoming user intents, leading to local attackers gaining unauthorized access to privileged content providers with Galaxy Store permissions. This could potentially enable malicious actors to manipulate or steal sensitive information, posing a significant risk to users. It is essential that users update their Galaxy Store software to the latest version to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Samsung Galaxy Apps Store

Affected Vendors

  • Samsung