13.0

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

local

low complexity

samsung

NVD

Published: 2023-05-04

Updated: 2023-05-10

Summary

Improper access control vulnerability in Knox Enrollment Service prior to SMR May-2023 Release 1 allow attacker install KSP app when device admin is set.

Vulnerable Configurations

Part	Description	Count
OS	Samsung Samsung Android 11.0 Samsung Android 12.0 Samsung Android 13.0	51

References

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05