Man-in-the-Middle Vulnerability in Samsung Apps by Samsung
CVE-2015-0863

8HIGH

Key Information:

Vendor: Samsung
Status: Galaxy App; Samsung Account App
Vendor: CVE Published:; 27 March 2017

Summary

A vulnerability in Samsung Apps prior to version 14120405.03.012 allows man-in-the-middle attackers to intercept communications. This security flaw enables unauthorized access to sensitive information and the execution of arbitrary code, posing significant risks to user data privacy and device integrity. It highlights the importance of regular software updates and security best practices.

References

https://www.nowsecure.com/blog/2015/01/26/samsung-account...

x_refsource_MISC

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Mar 27, 2017
Vulnerability Reserved
Jan 7, 2015