← Zuruck zu CVEs
CVE-2023-42575
MEDIUM5.4
Beschreibung
Improper Authentication vulnerability in Samsung Pass prior to version 4.3.00.17 allows physical attackers to bypass authentication due to invalid flag setting.
CVE Details
CVSS v3.1 Bewertung5.4
SchweregradMEDIUM
CVSS VektorCVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N
AngriffsvektorPHYSICAL
KomplexitatLOW
Erforderliche PrivilegienHIGH
BenutzerinteraktionREQUIRED
Veroffentlicht12/5/2023
Zuletzt geandert11/21/2024
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
samsung:pass
Schwachen (CWE)
CWE-863
Referenzen
https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12(mobile.security@samsung.com)
https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12(af854a3a-2127-422b-91ae-364da2661108)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.