CVE-2024-20839 — Samsung Voice Recorder vulnerability

3 documents3 sources
Severity
4.6MEDIUMNVD
EPSS
0.1%
top 77.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Samsung Voice Recorder
Timeline
PublishedMar 5

Description

Improper access control in Samsung Voice Recorder prior to versions 21.5.16.01 in Android 12 and Android 13, 21.4.51.02 in Android 14 allows physical attackers to access recording files on the lock screen.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 0.9 | Impact: 3.6

Affected Packages1 packages

â–¶NVDsamsung/voice_recorder< 21.5.16.01+1

🔴Vulnerability Details

2
CVEList
CVE-2024-20839: Improper access control in Samsung Voice Recorder prior to versions 21↗2024-03-05
â–¶
GHSA
GHSA-qh2f-ppj6-8vgp: Improper access control in Samsung Voice Recorder prior to versions 21↗2024-03-05
â–¶
CVE-2024-20839 — Samsung Voice Recorder vulnerability | cvebase