CVE-2023-21464

CWE-2813 documents3 sources
Severity
3.3LOW
EPSS
0.1%
top 82.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Samsung Mobile Samsung CalendarSamsung Calendar
Timeline
PublishedMar 16

Description

Improper access control in Samsung Calendar prior to versions 12.4.02.9000 in Android 13 and 12.3.08.2000 in Android 12 allows local attacker to configure improper status.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 2.5 | Impact: 1.4

Affected Packages2 packages

NVDsamsung/calendar< 12.4.02.9000+1
CVEListV5samsung_mobile/samsung_calendarunspecified12.4.02.9000 in Android 13 and 12.3.08.2000 in Android 12

🔴Vulnerability Details

2
GHSA
GHSA-gmpx-46vh-q9fp: Improper access control in Samsung Calendar prior to versions 122023-03-16
CVEList
CVE-2023-21464: Improper access control in Samsung Calendar prior to versions 122023-03-16
CVE-2023-21464 (LOW CVSS 3.3) | Improper access control in Samsung | cvebase.io