CVE-2023-42553 — Incorrect Authorization in Samsung Email

Severity

5.3MEDIUMNVD

CNA4.0

EPSS

0.3%

top 48.25%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedNov 7

Latest updateNov 15

Description

Improper authorization verification vulnerability in Samsung Email prior to version 6.1.90.4 allows attackers to read sandbox data of email.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

▶NVDsamsung/email< 6.1.90.4

GHSA

GHSA-96x6-ppmq-j9wc: Improper authorization verification vulnerability in Samsung Email prior to version 6↗2023-11-15

▶

CVEList

CVE-2023-42553: Improper authorization verification vulnerability in Samsung Email prior to version 6↗2023-11-07

▶