CVE-2023-30727

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 4, 2023

Updated: Nov 7, 2023

Summary

CVE-2023-30727 is a new access control vulnerability that has been identified in SecSettings prior to the SMR Oct-2023 Release 1. This issue allows unauthorized access, enabling attackers to activate Wi-Fi functionality and connect to arbitrary networks without requiring user interaction. This vulnerability poses a significant risk to organizations and individuals who use SecSettings, as it can lead to unintended network connections and data exposure. It is crucial to apply the appropriate patches or upgrades as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung Android

Affected Vendors

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s4Q39F
https://www.cve.org/CVERecord?id=CVE-2023-30727
https://nvd.nist.gov/vuln/detail/CVE-2023-30727

Back to Vulnerability Database