CVE-2023-42576

Improper Authentication vulnerability in Samsung Pass prior to version 4.3.00.17 allows physical attackers to bypass authentication due to invalid exception handler.
Configurations

Configuration 1 (hide)

cpe:2.3:a:samsung:pass:*:*:*:*:*:*:*:*

History

11 Dec 2023, 15:42

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.8
CPE cpe:2.3:a:samsung:pass:*:*:*:*:*:*:*:*
References () https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12 - () https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12 - Vendor Advisory
First Time Samsung
Samsung pass
CWE CWE-287

05 Dec 2023, 03:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-12-05 03:15

Updated : 2024-02-28 20:54


NVD link : CVE-2023-42576

Mitre link : CVE-2023-42576

CVE.ORG link : CVE-2023-42576


JSON object : View

Products Affected

samsung

  • pass
CWE
CWE-287

Improper Authentication