CVE-2023-30725

CWE-287Improper Authentication3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 69.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Samsung Gallery
Timeline
PublishedSep 6

Description

Improper authentication in LocalProvier of Gallery prior to version 14.5.01.2 allows attacker to access the data in content provider.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:NExploitability: 2.5 | Impact: 2.5

Affected Packages1 packages

NVDsamsung/gallery< 14.5.01.2

🔴Vulnerability Details

2
GHSA
GHSA-q9fw-58jw-47f2: Improper authentication in LocalProvier of Gallery prior to version 142023-09-06
CVEList
CVE-2023-30725: Improper authentication in LocalProvier of Gallery prior to version 142023-09-06
CVE-2023-30725 (MEDIUM CVSS 5.5) | Improper authentication in LocalPro | cvebase.io