CVE-2023-42577

Improper Access Control in Samsung Voice Recorder prior to versions 21.4.15.01 in Android 12 and Android 13, 21.4.50.17 in Android 14 allows physical attackers to access Voice Recorder information on the lock screen.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:samsung:samsung_voice_recorder:*:*:*:*:*:*:*:*
OR cpe:2.3:o:samsung:android:12.0:-:*:*:*:*:*:*
cpe:2.3:o:samsung:android:13.0:-:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:samsung:samsung_voice_recorder:*:*:*:*:*:*:*:*
cpe:2.3:o:samsung:android:14.0:-:*:*:*:*:*:*

History

11 Dec 2023, 15:41

Type Values Removed Values Added
CWE NVD-CWE-Other
CPE cpe:2.3:o:samsung:android:14.0:-:*:*:*:*:*:*
cpe:2.3:o:samsung:samsung_voice_recorder:*:*:*:*:*:*:*:*
cpe:2.3:o:samsung:android:13.0:-:*:*:*:*:*:*
cpe:2.3:o:samsung:android:12.0:-:*:*:*:*:*:*
First Time Samsung
Samsung android
Samsung samsung Voice Recorder
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 2.4
References () https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12 - () https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12 - Vendor Advisory

05 Dec 2023, 03:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-12-05 03:15

Updated : 2024-02-28 20:54


NVD link : CVE-2023-42577

Mitre link : CVE-2023-42577

CVE.ORG link : CVE-2023-42577


JSON object : View

Products Affected

samsung

  • samsung_voice_recorder
  • android