Arbitrary SMS Transmission Vulnerability in Samsung Galaxy S3 and S4 Devices
CVE-2013-4763

4.6MEDIUM

Key Information:

Vendor: Samsung
Status: Galaxy S3 Firmware
Vendor: CVE Published:; 27 December 2019

Summary

The Samsung Galaxy S3 and S4 are susceptible to a vulnerability that permits the transmission of arbitrary SMS text messages. This flaw arises from an exposed component that does not require permission for sending messages. This can lead to unauthorized communication being sent from the user's device, posing a significant risk to user privacy and security. Users are advised to take immediate action to secure their devices and mitigate potential threats.

References

http://archives.neohapsis.com/archives/bugtraq/2013-07/01...

x_refsource_MISC

https://www.securityfocus.com/bid/61280

x_refsource_MISC

CVSS V3.1

Score:

4.6

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 27, 2019
Vulnerability Reserved
Jul 5, 2013