Improper Access Control Vulnerability in Samsung Cloud
CVE-2023-21447
4MEDIUM
Summary
An improper access control vulnerability in Samsung Cloud, preceding version 5.3.0.32, allows local attackers to exploit implicit intents. This flaw can lead to unauthorized access to sensitive information, potentially compromising user privacy and data integrity.
Affected Version(s)
Samsung Cloud < 5.3.0.32
References
CVSS V3.1
Score:
4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved