CVE-2024-20897

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jul 2, 2024

Updated: Jul 5, 2024

Summary

CVE-2024-20897 is a cybersecurity vulnerability affecting the FCM function in IMS service before the SMR Jul-2024 Release 1. This issue arises due to the use of implicit intent for sensitive communication. Local attackers can exploit this vulnerability to gain unauthorized access to sensitive information. This could lead to potential data breaches and privacy concerns for affected organizations. It is recommended that users upgrade to the latest release as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung Android

Affected Vendors

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/wxYnk2
https://www.cve.org/CVERecord?id=CVE-2024-20897
https://nvd.nist.gov/vuln/detail/CVE-2024-20897

Back to Vulnerability Database