CVE-2023-30667

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Jul 6, 2023

Updated: Nov 7, 2023

Summary

CVE-2023-30667 is a newly disclosed vulnerability affecting the Audio system service. This issue involves improper access control, which enables attackers to send broadcast messages with system privileges before the SMR Jul-2023 Release 1. Successful exploitation of this vulnerability could allow an attacker to gain elevated permissions, potentially leading to significant unauthorized system changes or data compromise. Users are strongly advised to apply the patches provided in the latest release as soon as possible to mitigate the risk of exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung Android

Affected Vendors

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r5F9mn
https://www.cve.org/CVERecord?id=CVE-2023-30667
https://nvd.nist.gov/vuln/detail/CVE-2023-30667

Back to Vulnerability Database