5.5
CVE-2024-20825
- EPSS 0.05%
- Published 06.02.2024 03:15:10
- Last modified 21.11.2024 08:53:13
- Source mobile.security@samsung.com
- Teams watchlist Login
- Open Login
Implicit intent hijacking vulnerability in IAP of Galaxy Store prior to version 4.5.63.6 allows local attackers to access sensitive information via implicit intent.
Data is provided by the National Vulnerability Database (NVD)
Samsung ≫ Galaxy Store Version < 4.5.63.6
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.05% | 0.148 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
|
| mobile.security@samsung.com | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
|