CVE-2023-30730Improper Authorization in Samsung Camera

CWE-285Improper Authorization3 documents3 sources
Severity
5.5MEDIUMNVD
CNA3.3
EPSS
0.1%
top 75.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Samsung Camera
Timeline
PublishedSep 6

Description

Implicit intent hijacking vulnerability in Camera prior to versions 11.0.16.43 in Android 11, 12.1.00.30, 12.0.07.53, 12.1.03.10 in Android 12, and 13.0.01.43, 13.1.00.83 in Android 13 allows local attacker to access specific file.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

NVDsamsung/camera11.0.00.0011.0.16.43+5

🔴Vulnerability Details

2
CVEList
CVE-2023-30730: Implicit intent hijacking vulnerability in Camera prior to versions 112023-09-06
GHSA
GHSA-v7v8-hv6r-cg39: Implicit intent hijacking vulnerability in Camera prior to versions 112023-09-06
CVE-2023-30730 — Improper Authorization in Samsung | cvebase