Samsung Health Vulnerability Allows Local Attackers to Write Arbitrary Document Files to Sandbox

CVE-2024-34597
3.3LOW

Key Information

Vendor
Samsung
Status
Health
Vendor
CVE Published:
2 July 2024

Summary

Improper input validation in Samsung Health prior to version 6.27.0.113 allows local attackers to write arbitrary document files to the sandbox of Samsung Health. User interaction is required for triggering this vulnerability.

CVSS V3.1

Score:
3.3
Severity:
LOW
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published.

Collectors

NVD Database
.