Improper Privilege Management Vulnerability in Samsung Video Player
CVE-2022-24927

4.2MEDIUM

Key Information:

Vendor: Samsung
Status: Samsung Video Player
Vendor: CVE Published:; 11 February 2022

Summary

An improper privilege management flaw exists in Samsung Video Player that allows attackers to execute video files without the necessary permissions. This vulnerability, present in versions prior to 7.3.15.30, can potentially be exploited to gain unauthorized access and affect the application's functionality. Users of Samsung Video Player should update to the latest version to mitigate any risks associated with this vulnerability.

Affected Version(s)

Samsung Video Player - < 7.3.15.30

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2...

x_refsource_MISC

CVSS V3.1

Score:

4.2

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 11, 2022
Vulnerability Reserved
Feb 10, 2022