← Volver a CVEs
CVE-2024-20839
MEDIUM4.6
Descripcion
Improper access control in Samsung Voice Recorder prior to versions 21.5.16.01 in Android 12 and Android 13, 21.4.51.02 in Android 14 allows physical attackers to access recording files on the lock screen.
Detalles CVE
Puntuacion CVSS v3.14.6
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vector de ataquePHYSICAL
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado3/5/2024
Ultima modificacion12/23/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
google:androidsamsung:voice_recorder
Referencias
https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=03(mobile.security@samsung.com)
https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=03(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.