CVE-2023-30673Improper Validation of Integrity Check Value in Samsung Smart Switch PC

CWE-354Improper Validation of Integrity Check Value3 documents3 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 91.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Samsung Smart Switch PC
Timeline
PublishedJul 6

Description

Improper validation of integrity check vulnerability in Smart Switch PC prior to version 4.3.23052_1 allows local attackers to delete arbitrary directory using directory junction.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

NVDsamsung/smart_switch_pc< 4.3.23052_1

🔴Vulnerability Details

2
GHSA
GHSA-48cv-xv53-cgjf: Improper validation of integrity check vulnerability in Smart Switch PC prior to version 42023-07-06
CVEList
CVE-2023-30673: Improper validation of integrity check vulnerability in Smart Switch PC prior to version 42023-07-06
CVE-2023-30673 — Samsung Smart Switch PC vulnerability | cvebase