CVE-2024-20885
CVSS 3.1 Score 5.1 of 10 (medium)
Details
Summary
CVE-2024-20885 is a newly identified vulnerability affecting Samsung Dialer before the SMR May-2024 Release 1. This issue is classified as an improper component protection vulnerability. Attackers who can gain local access to the affected system can exploit this weakness to make calls without the necessary authorization. This vulnerability poses a significant security risk, allowing unauthorized call activity that could potentially be used for malicious purposes. Samsung users are urged to update their Dialer application to the latest version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.