CVE-2023-21434
published 2023-02-09CVE-2023-21434: Improper input validation vulnerability in Galaxy Store prior to version 4.5.49.8 allows local attackers to execute JavaScript by launching a web page.
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
Improper input validation vulnerability in Galaxy Store prior to version 4.5.49.8 allows local attackers to execute JavaScript by launching a web page.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | galaxy_store | < 4.5.49.8 | 4.5.49.8 |
| samsung_mobile | galaxy_store | >= unspecified < 4.5.49.8 | 4.5.49.8 |