10.8.0.4

CVSS 2.4 - LOW

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

low complexity

samsung

NVD

Published: 2021-03-25

Updated: 2022-09-23

Summary

Improper Access Control in EmailValidationView in Samsung Account prior to version 10.7.0.7 and 12.1.1.3 allows physically proximate attackers to log out user account on device without user password.

Vulnerable Configurations

Part	Description	Count
Application	Samsung Samsung Account - Samsung Account 10.7.07 Samsung Account 10.8.0.4	3
OS	Google Google Android 9.0 Google Android 10.0	2

References

https://security.samsungmobile.com/serviceWeb.smsb
https://security.samsungmobile.com/