Vulnerabilities > CVE-2023-30677 - Unspecified vulnerability in Samsung Pass 4.0.05.1

CVSS 4.6 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

low complexity

samsung

NVD

Published: 2023-07-06

Updated: 2023-11-07

Summary

Improper access control vulnerability in Samsung Pass prior to version 4.2.03.1 allows physical attackers to access data of Samsung Pass on a certain state of an unlocked device.

Vulnerable Configurations

Part	Description	Count
Application	Samsung Samsung Pass - Samsung Pass 4.0.05.1	2

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=07