CVE-2024-34601

EPSS 0.08%
Published 02.07.2024 10:15:08
Last modified 03.01.2025 19:15:49
Source mobile.security@samsung.com
Teams watchlist Login
Open Login

Improper verification of intent by broadcast receiver vulnerability in GalaxyStore prior to version 4.5.81.0 allows local attackers to launch unexported activities of GalaxyStore.

Affected products Warnungen 0 Metrics 3 CWE 0 References 4

Data is provided by the National Vulnerability Database (NVD)

Samsung ≫ Galaxy Store Version < 4.5.81.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.08%	0.239

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.3	1.8	3.4	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
mobile.security@samsung.com	5.9	2.5	3.4	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=07

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-34601

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-34601

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-34601

EUVD