CVE-2023-42571

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Published Dec 5, 2023

Updated: Dec 11, 2023

Summary

CVE-2023-42571 is a vulnerability affecting Samsung's Find My Mobile service prior to version 7.3.13.4. Malicious actors can exploit this issue by resetting the Samsung Account password through SMS verification, enabling them to perform a remote unlock on targeted devices even if the physical access is not available. This poses a significant risk, particularly for users who have lost their devices, as it allows attackers to gain unauthorized access and potentially steal sensitive information.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sqJBGg
https://www.cve.org/CVERecord?id=CVE-2023-42571
https://nvd.nist.gov/vuln/detail/CVE-2023-42571

Back to Vulnerability Database

CVE-2023-42571

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations