CVE-2024-49405
CVSS 3.1 Score 4.6 of 10 (medium)
Details
Summary
CVE-2024-49405 is a new vulnerability affecting Samsung Pass, an authentication and password management service, prior to version 4.4.04.7. This issue involves improper authentication, allowing physical attackers to gain unauthorized access to sensitive information in a specific scenario. Successful exploitation of this vulnerability could result in the exposure of confidential data, potentially leading to privacy breaches and other malicious activities. Samsung has released an updated version to address this issue, and users are strongly advised to install it as soon as possible to protect their information.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Samsung