5.5
CVE-2024-49404
- EPSS 0.03%
- Published 06.11.2024 03:15:05
- Last modified 13.11.2024 00:55:09
- Source mobile.security@samsung.com
- Teams watchlist Login
- Open Login
Improper Access Control in Samsung Video Player prior to versions 7.3.29.1 in Android 12, 7.3.36.1 in Android 13, and 7.3.41.230 in Android 14 allows physical attackers to access video file of other users.
Data is provided by the National Vulnerability Database (NVD)
Samsung ≫ Video Player Version < 7.3.29.1
Samsung ≫ Video Player Version < 7.3.36.1
Samsung ≫ Video Player Version < 7.3.41.230
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.03% | 0.072 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 4.6 | 0.9 | 3.6 |
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
| mobile.security@samsung.com | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
|