Improper access control in key input related function in Dressroom prior to SMR Sep-2024 Release 1 allows local attackers to access protected data. User interaction is required for triggering this vulnerability.
Metrics
Affected Vendors & Products
References
History
Thu, 05 Sep 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | NVD-CWE-Other | |
CPEs | cpe:2.3:o:samsung:android:14.0:-:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-apr-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-apr-2023-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-apr-2024-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-aug-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-aug-2023-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-aug-2024-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-dec-2021-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-dec-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-dec-2023-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-feb-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-feb-2023-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-feb-2024-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-jan-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-jan-2023-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-jan-2024-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-jul-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-jul-2023-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-jul-2024-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-jun-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-jun-2023-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-jun-2024-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-mar-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-mar-2023-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-mar-2024-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-may-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-may-2023-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-may-2024-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-nov-2021-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-nov-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-nov-2023-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-oct-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-oct-2023-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-sep-2022-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-sep-2023-r1:*:*:*:*:*:* |
Wed, 04 Sep 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:o:samsung:android:13.0:smr-sep-2024-r1:*:*:*:*:*:* |
Wed, 04 Sep 2024 13:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Samsung
Samsung android |
|
CPEs | cpe:2.3:o:samsung:android:12.0:smr-sep-2024-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:13.0:smr-sep-2024-r1:*:*:*:*:*:* cpe:2.3:o:samsung:android:14.0:smr-sep-2024-r1:*:*:*:*:*:* |
|
Vendors & Products |
Samsung
Samsung android |
|
Metrics |
ssvc
|
Wed, 04 Sep 2024 05:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper access control in key input related function in Dressroom prior to SMR Sep-2024 Release 1 allows local attackers to access protected data. User interaction is required for triggering this vulnerability. | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: SamsungMobile
Published: 2024-09-04T05:32:26.535Z
Updated: 2024-09-04T13:13:29.389Z
Reserved: 2024-05-07T04:43:27.839Z
Link: CVE-2024-34643
Vulnrichment
Updated: 2024-09-04T13:11:23.162Z
NVD
Status : Analyzed
Published: 2024-09-04T06:15:12.970
Modified: 2024-09-05T18:03:12.323
Link: CVE-2024-34643
Redhat
No data.