Implicit Intent Hijacking Vulnerability in Camera by Samsung
CVE-2023-30730

3.3LOW

Key Information:

Vendor: Samsung
Status: Camera
Vendor: CVE Published:; 6 September 2023

What is CVE-2023-30730?

A vulnerability in Samsung's Camera app allows for implicit intent hijacking, enabling local attackers to access specific files without proper authorization. This affects multiple versions across various Android platforms, presenting a risk to users who may expose sensitive data inadvertently.

Affected Version(s)

Camera 11.0.16.43 in Android 11, 12.1.00.30, 12.0.07.53, 12.1.03.10 in Android 12, and 13.0.01.43, 13.1.00.83 in Android 13

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2...

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 6, 2023
Vulnerability Reserved
Apr 14, 2023