CVE-2024-20854

3 documents3 sources
Severity
3.3LOW
EPSS
0.1%
top 72.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Samsung Camera
Timeline
PublishedApr 2

Description

Improper handling of insufficient privileges vulnerability in Samsung Camera prior to versions 12.1.0.31 in Android 12, 13.1.02.07 in Android 13, and 14.0.01.06 in Android 14 allows local attackers to access image data.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:LExploitability: 2.5 | Impact: 3.4

Affected Packages1 packages

NVDsamsung/camera< 12.1.0.31+2

🔴Vulnerability Details

2
GHSA
GHSA-h933-77ww-w86w: Improper handling of insufficient privileges vulnerability in Samsung Camera prior to versions 122024-04-02
CVEList
CVE-2024-20854: Improper handling of insufficient privileges vulnerability in Samsung Camera prior to versions 122024-04-02
CVE-2024-20854 (LOW CVSS 3.3) | Improper handling of insufficient p | cvebase.io