CVE-2023-42575

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Published Dec 5, 2023

Updated: Dec 11, 2023

CWE ID 863

Summary

CVE-2023-42575 is an authentication vulnerability affecting Samsung Pass before version 4.3.00.17. This issue arises due to an incorrect flag setting, which enables physical attackers to bypass the authentication process. Successful exploitation allows unauthorized access to sensitive information, potentially compromising user privacy and security. This vulnerability highlights the importance of timely software updates and strong authentication mechanisms to protect against unauthorized access.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sqJCih
https://www.cve.org/CVERecord?id=CVE-2023-42575
https://nvd.nist.gov/vuln/detail/CVE-2023-42575

Back to Vulnerability Database

CVE-2023-42575

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations