CVE-2023-30705
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Aug 10, 2023
Updated: Nov 7, 2023
CWE ID 863
Summary
CVE-2023-30705 is a vulnerability affecting the Galaxy Store before version 4.5.56.6. This issue stems from an incorrect handling of incoming user intents, leading to local attackers gaining unauthorized access to privileged content providers with Galaxy Store permissions. This could potentially enable malicious actors to manipulate or steal sensitive information, posing a significant risk to users. It is essential that users update their Galaxy Store software to the latest version to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Samsung Galaxy Apps Store
Affected Vendors
- Samsung