CVE-2024-20869

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published May 7, 2024

Summary

CVE-2024-20869 is an improper privilege management vulnerability affecting Samsung Internet browser versions prior to 25.0.0.41. This issue grants local attackers the ability to bypass cookie protection, putting users at risk of unauthorized access to their browsing data. Attackers can exploit this vulnerability by manipulating browser settings or using malicious code, potentially leading to privacy breaches and other malicious activities. Users are strongly advised to update their Samsung Internet browser to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung Internet Browser

Affected Vendors

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vzc6tq
https://www.cve.org/CVERecord?id=CVE-2024-20869
https://nvd.nist.gov/vuln/detail/CVE-2024-20869

Back to Vulnerability Database