CVE-2024-34601Samsung Galaxy Store vulnerability

3 documents3 sources
Severity
5.3MEDIUMNVD
CNA5.9
EPSS
0.1%
top 71.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Samsung Galaxy Store
Timeline
PublishedJul 2

Description

Improper verification of intent by broadcast receiver vulnerability in GalaxyStore prior to version 4.5.81.0 allows local attackers to launch unexported activities of GalaxyStore.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LExploitability: 1.8 | Impact: 3.4

Affected Packages1 packages

NVDsamsung/galaxy_store< 4.5.81.0

🔴Vulnerability Details

2
CVEList
CVE-2024-34601: Improper verification of intent by broadcast receiver vulnerability in GalaxyStore prior to version 42024-07-02
GHSA
GHSA-99gg-qpxg-g262: Improper verification of intent by broadcast receiver vulnerability in GalaxyStore prior to version 42024-07-02
CVE-2024-34601 — Samsung Galaxy Store vulnerability | cvebase