Vulnerabilities > CVE-2023-30704 - Unspecified vulnerability in Samsung Internet

CVSS 4.6 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

low complexity

samsung

NVD

Published: 2023-08-10

Updated: 2023-11-07

Summary

Improper Authorization vulnerability in Samsung Internet prior to version 22.0.0.35 allows physical attacker access downloaded files in Secret Mode without user authentication.

Vulnerable Configurations

Part	Description	Count
Application	Samsung Samsung Internet - Samsung Internet 13.2.1.46 Samsung Internet 13.2.1.70 Samsung Internet 14.0.1.20 Samsung Internet 14.0.1.62 Samsung Internet 16.0.6.23	6

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=08