CVE-2023-30655

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 6, 2023

Updated: Nov 7, 2023

CWE ID 20

Summary

CVE-2023-30655 is a newly disclosed vulnerability affecting SCEPProfile before the SMR Jul-2023 Release 1. This issue stems from an improper input validation issue, enabling local attackers to execute privileged activities on the system. Successful exploitation of this vulnerability could lead to significant security implications, making it essential for users to update their SCEPProfile software as soon as the patch is available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung Android

Affected Vendors

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r5FjkI
https://www.cve.org/CVERecord?id=CVE-2023-30655
https://nvd.nist.gov/vuln/detail/CVE-2023-30655

Back to Vulnerability Database