Vulnerability-Lookup

CVE-2023-21514 (GCVE-0-2023-21514)

Vulnerability from cvelistv5 – Published: 2023-05-26 00:00 – Updated: 2025-01-15 21:38

Summary

Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-20 - Improper Input Validation

Assigner

Samsung Mobile

References

1 reference

URL	Tags
https://security.samsungmobile.com/serviceWeb.sms…

Impacted products

1 product

Vendor	Product	Version
Samsung Mobile	Galaxy Store	Affected: unspecified , < 4.5.49.8 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T09:44:01.286Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-21514",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-01-15T21:38:34.599746Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-01-15T21:38:48.735Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Galaxy Store",
          "vendor": "Samsung Mobile",
          "versions": [
            {
              "lessThan": "4.5.49.8",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20 Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-05-26T00:00:00.000Z",
        "orgId": "3af57064-a867-422c-b2ad-40307b65c458",
        "shortName": "Samsung Mobile"
      },
      "references": [
        {
          "url": "https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "3af57064-a867-422c-b2ad-40307b65c458",
    "assignerShortName": "Samsung Mobile",
    "cveId": "CVE-2023-21514",
    "datePublished": "2023-05-26T00:00:00.000Z",
    "dateReserved": "2022-11-14T00:00:00.000Z",
    "dateUpdated": "2025-01-15T21:38:48.735Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2023-21514",
      "date": "2026-05-29",
      "epss": "0.0018",
      "percentile": "0.39307"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:samsung:galaxy_store:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"4.5.49.8\", \"matchCriteriaId\": \"89518C6A-E895-484C-9BF3-82EB9FE189A6\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.\"}]",
      "id": "CVE-2023-21514",
      "lastModified": "2024-11-21T07:42:59.440",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"mobile.security@samsung.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.6, \"impactScore\": 5.9}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}]}",
      "published": "2023-05-26T22:15:14.377",
      "references": "[{\"url\": \"https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01\", \"source\": \"mobile.security@samsung.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "mobile.security@samsung.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"mobile.security@samsung.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-21514\",\"sourceIdentifier\":\"mobile.security@samsung.com\",\"published\":\"2023-05-26T22:15:14.377\",\"lastModified\":\"2024-11-21T07:42:59.440\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"mobile.security@samsung.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.6,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"mobile.security@samsung.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:samsung:galaxy_store:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.5.49.8\",\"matchCriteriaId\":\"89518C6A-E895-484C-9BF3-82EB9FE189A6\"}]}]}],\"references\":[{\"url\":\"https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01\",\"source\":\"mobile.security@samsung.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T09:44:01.286Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-21514\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-01-15T21:38:34.599746Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-15T21:38:39.956Z\"}}], \"cna\": {\"source\": {\"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"Samsung Mobile\", \"product\": \"Galaxy Store\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"4.5.49.8\", \"versionType\": \"custom\"}]}], \"references\": [{\"url\": \"https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-20\", \"description\": \"CWE-20 Improper Input Validation\"}]}], \"providerMetadata\": {\"orgId\": \"3af57064-a867-422c-b2ad-40307b65c458\", \"shortName\": \"Samsung Mobile\", \"dateUpdated\": \"2023-05-26T00:00:00.000Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-21514\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-15T21:38:48.735Z\", \"dateReserved\": \"2022-11-14T00:00:00.000Z\", \"assignerOrgId\": \"3af57064-a867-422c-b2ad-40307b65c458\", \"datePublished\": \"2023-05-26T00:00:00.000Z\", \"assignerShortName\": \"Samsung Mobile\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

FKIE_CVE-2023-21514

Vulnerability from fkie_nvd - Published: 2023-05-26 22:15 - Updated: 2024-11-21 07:42

Severity

7.5 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Summary

Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.

References

	URL	Tags
	mobile.security@samsung.com	https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=01	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=01	Vendor Advisory

Impacted products

	Vendor	Product	Version
	samsung	galaxy_store	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:samsung:galaxy_store:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "89518C6A-E895-484C-9BF3-82EB9FE189A6",
              "versionEndExcluding": "4.5.49.8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store."
    }
  ],
  "id": "CVE-2023-21514",
  "lastModified": "2024-11-21T07:42:59.440",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.6,
        "impactScore": 5.9,
        "source": "mobile.security@samsung.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-05-26T22:15:14.377",
  "references": [
    {
      "source": "mobile.security@samsung.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01"
    }
  ],
  "sourceIdentifier": "mobile.security@samsung.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "mobile.security@samsung.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-XM4H-VRCX-RW8C

Vulnerability from github – Published: 2023-05-27 00:30 – Updated: 2024-04-04 04:21

Details

Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.

Severity

7.5 (High)


                  
                    CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-21514"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2023-05-26T22:15:14Z",
    "severity": "HIGH"
  },
  "details": "Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.",
  "id": "GHSA-xm4h-vrcx-rw8c",
  "modified": "2024-04-04T04:21:59Z",
  "published": "2023-05-27T00:30:19Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-21514"
    },
    {
      "type": "WEB",
      "url": "https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2023-21514

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.

Aliases

CVE-2023-21514

Aliases

CVE-2023-21514

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-21514",
    "id": "GSD-2023-21514"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-21514"
      ],
      "details": "Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.",
      "id": "GSD-2023-21514",
      "modified": "2023-12-13T01:20:25.547542Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "mobile.security@samsung.com",
        "ID": "CVE-2023-21514",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Galaxy Store",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "",
                          "version_value": "4.5.49.8"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Samsung Mobile"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store."
          }
        ]
      },
      "impact": {
        "cvss": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": "7.5",
          "baseSeverity": "High",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        }
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-20 Improper Input Validation"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01",
            "refsource": "MISC",
            "url": "https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01"
          }
        ]
      },
      "source": {
        "discovery": "UNKNOWN"
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:samsung:galaxy_store:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "4.5.49.8",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "mobile.security@samsung.com",
          "ID": "CVE-2023-21514"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://security.samsungmobile.com/serviceWeb.smsb?year=2023\u0026month=01"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2023-06-21T15:18Z",
      "publishedDate": "2023-05-26T22:15Z"
    }
  }
}

VAR-202305-2534

Vulnerability from variot - Updated: 2023-12-18 13:00

Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store. Samsung's Galaxy Store There is an input validation vulnerability in.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Samsung Galaxy S22 smartphones. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the InstantPlaysDeepLink class. The issue results from a permissive list of allowed inputs. An attacker can leverage this vulnerability to execute code in the context of the current user

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-202305-2534",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "galaxy store",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "samsung",
        "version": "4.5.49.8"
      },
      {
        "model": "galaxy store",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30b5\u30e0\u30b9\u30f3",
        "version": null
      },
      {
        "model": "galaxy store",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30b5\u30e0\u30b9\u30f3",
        "version": "4.5.49.8"
      },
      {
        "model": "galaxy store",
        "scope": null,
        "trust": 0.8,
        "vendor": "\u30b5\u30e0\u30b9\u30f3",
        "version": null
      },
      {
        "model": "galaxy s22",
        "scope": null,
        "trust": 0.7,
        "vendor": "samsung",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-773"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2023-007563"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-21514"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:samsung:galaxy_store:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "4.5.49.8",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2023-21514"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Chim",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-773"
      }
    ],
    "trust": 0.7
  },
  "cve": "CVE-2023-21514",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "NVD",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 2.8,
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "author": "mobile.security@samsung.com",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 1.6,
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Network",
            "author": "NVD",
            "availabilityImpact": "High",
            "baseScore": 8.8,
            "baseSeverity": "High",
            "confidentialityImpact": "High",
            "exploitabilityScore": null,
            "id": "CVE-2023-21514",
            "impactScore": null,
            "integrityImpact": "High",
            "privilegesRequired": "None",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "Required",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "ZDI",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 2.8,
            "id": "CVE-2023-21514",
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 0.7,
            "userInteraction": "REQUIRED",
            "vectorString": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2023-21514",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "mobile.security@samsung.com",
            "id": "CVE-2023-21514",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "ZDI",
            "id": "CVE-2023-21514",
            "trust": 0.7,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-202305-2314",
            "trust": 0.6,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-773"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2023-007563"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-21514"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-21514"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202305-2314"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store. Samsung\u0027s Galaxy Store There is an input validation vulnerability in.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Samsung Galaxy S22 smartphones. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the InstantPlaysDeepLink class. The issue results from a permissive list of allowed inputs. An attacker can leverage this vulnerability to execute code in the context of the current user",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2023-21514"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2023-007563"
      },
      {
        "db": "ZDI",
        "id": "ZDI-23-773"
      },
      {
        "db": "VULMON",
        "id": "CVE-2023-21514"
      }
    ],
    "trust": 2.34
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2023-21514",
        "trust": 4.0
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2023-007563",
        "trust": 0.8
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-19751",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-23-773",
        "trust": 0.7
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202305-2314",
        "trust": 0.6
      },
      {
        "db": "VULMON",
        "id": "CVE-2023-21514",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-773"
      },
      {
        "db": "VULMON",
        "id": "CVE-2023-21514"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2023-007563"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-21514"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202305-2314"
      }
    ]
  },
  "id": "VAR-202305-2534",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VARIoT devices database",
        "id": null
      }
    ],
    "trust": 0.33333334
  },
  "last_update_date": "2023-12-18T13:00:08.151000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Samsung has issued an update to correct this vulnerability.",
        "trust": 0.7,
        "url": "https://security.samsungmobile.com/serviceweb.smsb"
      },
      {
        "title": "SAMSUNG Mobile devices Enter the fix for the verification error vulnerability",
        "trust": 0.6,
        "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=242471"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-773"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202305-2314"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-20",
        "trust": 1.0
      },
      {
        "problemtype": "Inappropriate input confirmation (CWE-20) [NVD evaluation ]",
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2023-007563"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-21514"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.5,
        "url": "https://security.samsungmobile.com/serviceweb.smsb?year=2023\u0026month=01"
      },
      {
        "trust": 0.8,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2023-21514"
      },
      {
        "trust": 0.7,
        "url": "https://security.samsungmobile.com/serviceweb.smsb"
      },
      {
        "trust": 0.6,
        "url": "https://cxsecurity.com/cveshow/cve-2023-21514/"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-773"
      },
      {
        "db": "VULMON",
        "id": "CVE-2023-21514"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2023-007563"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-21514"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202305-2314"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "ZDI",
        "id": "ZDI-23-773"
      },
      {
        "db": "VULMON",
        "id": "CVE-2023-21514"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2023-007563"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-21514"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202305-2314"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2023-05-31T00:00:00",
        "db": "ZDI",
        "id": "ZDI-23-773"
      },
      {
        "date": "2023-05-26T00:00:00",
        "db": "VULMON",
        "id": "CVE-2023-21514"
      },
      {
        "date": "2023-11-22T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2023-007563"
      },
      {
        "date": "2023-05-26T22:15:14.377000",
        "db": "NVD",
        "id": "CVE-2023-21514"
      },
      {
        "date": "2023-05-26T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202305-2314"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2023-05-31T00:00:00",
        "db": "ZDI",
        "id": "ZDI-23-773"
      },
      {
        "date": "2023-05-26T00:00:00",
        "db": "VULMON",
        "id": "CVE-2023-21514"
      },
      {
        "date": "2023-11-22T08:11:00",
        "db": "JVNDB",
        "id": "JVNDB-2023-007563"
      },
      {
        "date": "2023-06-21T15:18:17.423000",
        "db": "NVD",
        "id": "CVE-2023-21514"
      },
      {
        "date": "2023-06-25T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202305-2314"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202305-2314"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Samsung\u0027s \u00a0Galaxy\u00a0Store\u00a0 Input verification vulnerability in",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2023-007563"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "input validation error",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202305-2314"
      }
    ],
    "trust": 0.6
  }
}

WID-SEC-W-2023-1344

Vulnerability from csaf_certbund - Published: 2023-05-31 22:00 - Updated: 2023-05-31 22:00

Summary

Samsung Android: Mehrere Schwachstellen

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Das Android Betriebssystem ist eine quelloffene Plattform für mobile Geräte. Die Basis bildet der Linux-Kernel.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Samsung Android Apps und den S22 Modellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen.

Betroffene Betriebssysteme: - Android

CVE-2023-21516

In Samsung Android existieren mehrere Schwachstellen im Samsung Core Service, Samsung Blockchain Keystore und Galaxy S22 Modellen. Die Ursachen sind ungenügende Eingabeüberprüfungen und Zugriffskontrollen, sowie Out-of-bounds Write- und Read Fehler. Ein Angreifer kann diese Schwachstellen ausnutzen, um Code zur Ausführung zu bringen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion oder eine Anmeldung erforderlich.

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Samsung Android Galaxy S22 Samsung / Android	`cpe:/o:samsung:android:galaxy_s22`	—

CVE-2023-21515

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Samsung Android Galaxy S22 Samsung / Android	`cpe:/o:samsung:android:galaxy_s22`	—

CVE-2023-21514

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Samsung Android Galaxy S22 Samsung / Android	`cpe:/o:samsung:android:galaxy_s22`	—

CVE-2023-21511

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Samsung Android Galaxy S22 Samsung / Android	`cpe:/o:samsung:android:galaxy_s22`	—

CVE-2023-21510

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Samsung Android Galaxy S22 Samsung / Android	`cpe:/o:samsung:android:galaxy_s22`	—

CVE-2023-21509

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Samsung Android Galaxy S22 Samsung / Android	`cpe:/o:samsung:android:galaxy_s22`	—

CVE-2023-21508

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Samsung Android Galaxy S22 Samsung / Android	`cpe:/o:samsung:android:galaxy_s22`	—

CVE-2023-21507

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Samsung Android Galaxy S22 Samsung / Android	`cpe:/o:samsung:android:galaxy_s22`	—

CVE-2023-21506

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Samsung Android Galaxy S22 Samsung / Android	`cpe:/o:samsung:android:galaxy_s22`	—

CVE-2023-21505

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Samsung Android Galaxy S22 Samsung / Android	`cpe:/o:samsung:android:galaxy_s22`	—

References

6 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.zerodayinitiative.com/advisories/ZDI-…	external
https://www.zerodayinitiative.com/advisories/ZDI-…	external
https://www.zerodayinitiative.com/advisories/ZDI-…	external
https://security.samsungmobile.com/serviceWeb.smsb	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Das Android Betriebssystem ist eine quelloffene Plattform f\u00fcr mobile Ger\u00e4te. Die Basis bildet der Linux-Kernel.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Samsung Android Apps und den S22 Modellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Android",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1344 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1344.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1344 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1344"
      },
      {
        "category": "external",
        "summary": "ZDI Advisory vom 2023-05-31",
        "url": "https://www.zerodayinitiative.com/advisories/ZDI-23-774/"
      },
      {
        "category": "external",
        "summary": "ZDI Advisory vom 2023-05-31",
        "url": "https://www.zerodayinitiative.com/advisories/ZDI-23-772/"
      },
      {
        "category": "external",
        "summary": "ZDI Advisory vom 2023-05-31",
        "url": "https://www.zerodayinitiative.com/advisories/ZDI-23-773/"
      },
      {
        "category": "external",
        "summary": "SamsungMobile Android Applications Updates vom 2023-05-31",
        "url": "https://security.samsungmobile.com/serviceWeb.smsb"
      }
    ],
    "source_lang": "en-US",
    "title": "Samsung Android: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-05-31T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:51:41.434+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-1344",
      "initial_release_date": "2023-05-31T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-05-31T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Samsung Android Core Service \u003c 2.1.00.36",
                "product": {
                  "name": "Samsung Android Core Service \u003c 2.1.00.36",
                  "product_id": "T027931",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:samsung:android:core_service__2.1.00.36"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Samsung Android Blockchain Keystore \u003c 1.3.12.1",
                "product": {
                  "name": "Samsung Android Blockchain Keystore \u003c 1.3.12.1",
                  "product_id": "T027932",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:samsung:android:blockchain_keystore__1.3.12.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Samsung Android Galaxy S22",
                "product": {
                  "name": "Samsung Android Galaxy S22",
                  "product_id": "T027933",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:samsung:android:galaxy_s22"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Android"
          }
        ],
        "category": "vendor",
        "name": "Samsung"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-21516",
      "notes": [
        {
          "category": "description",
          "text": "In Samsung Android existieren mehrere Schwachstellen im Samsung Core Service, Samsung Blockchain Keystore und Galaxy S22 Modellen. Die Ursachen sind ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen und Zugriffskontrollen, sowie Out-of-bounds Write- und Read Fehler. Ein Angreifer kann diese Schwachstellen ausnutzen, um Code zur Ausf\u00fchrung zu bringen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion oder eine Anmeldung erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027933"
        ]
      },
      "release_date": "2023-05-31T22:00:00.000+00:00",
      "title": "CVE-2023-21516"
    },
    {
      "cve": "CVE-2023-21515",
      "notes": [
        {
          "category": "description",
          "text": "In Samsung Android existieren mehrere Schwachstellen im Samsung Core Service, Samsung Blockchain Keystore und Galaxy S22 Modellen. Die Ursachen sind ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen und Zugriffskontrollen, sowie Out-of-bounds Write- und Read Fehler. Ein Angreifer kann diese Schwachstellen ausnutzen, um Code zur Ausf\u00fchrung zu bringen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion oder eine Anmeldung erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027933"
        ]
      },
      "release_date": "2023-05-31T22:00:00.000+00:00",
      "title": "CVE-2023-21515"
    },
    {
      "cve": "CVE-2023-21514",
      "notes": [
        {
          "category": "description",
          "text": "In Samsung Android existieren mehrere Schwachstellen im Samsung Core Service, Samsung Blockchain Keystore und Galaxy S22 Modellen. Die Ursachen sind ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen und Zugriffskontrollen, sowie Out-of-bounds Write- und Read Fehler. Ein Angreifer kann diese Schwachstellen ausnutzen, um Code zur Ausf\u00fchrung zu bringen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion oder eine Anmeldung erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027933"
        ]
      },
      "release_date": "2023-05-31T22:00:00.000+00:00",
      "title": "CVE-2023-21514"
    },
    {
      "cve": "CVE-2023-21511",
      "notes": [
        {
          "category": "description",
          "text": "In Samsung Android existieren mehrere Schwachstellen im Samsung Core Service, Samsung Blockchain Keystore und Galaxy S22 Modellen. Die Ursachen sind ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen und Zugriffskontrollen, sowie Out-of-bounds Write- und Read Fehler. Ein Angreifer kann diese Schwachstellen ausnutzen, um Code zur Ausf\u00fchrung zu bringen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion oder eine Anmeldung erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027933"
        ]
      },
      "release_date": "2023-05-31T22:00:00.000+00:00",
      "title": "CVE-2023-21511"
    },
    {
      "cve": "CVE-2023-21510",
      "notes": [
        {
          "category": "description",
          "text": "In Samsung Android existieren mehrere Schwachstellen im Samsung Core Service, Samsung Blockchain Keystore und Galaxy S22 Modellen. Die Ursachen sind ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen und Zugriffskontrollen, sowie Out-of-bounds Write- und Read Fehler. Ein Angreifer kann diese Schwachstellen ausnutzen, um Code zur Ausf\u00fchrung zu bringen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion oder eine Anmeldung erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027933"
        ]
      },
      "release_date": "2023-05-31T22:00:00.000+00:00",
      "title": "CVE-2023-21510"
    },
    {
      "cve": "CVE-2023-21509",
      "notes": [
        {
          "category": "description",
          "text": "In Samsung Android existieren mehrere Schwachstellen im Samsung Core Service, Samsung Blockchain Keystore und Galaxy S22 Modellen. Die Ursachen sind ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen und Zugriffskontrollen, sowie Out-of-bounds Write- und Read Fehler. Ein Angreifer kann diese Schwachstellen ausnutzen, um Code zur Ausf\u00fchrung zu bringen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion oder eine Anmeldung erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027933"
        ]
      },
      "release_date": "2023-05-31T22:00:00.000+00:00",
      "title": "CVE-2023-21509"
    },
    {
      "cve": "CVE-2023-21508",
      "notes": [
        {
          "category": "description",
          "text": "In Samsung Android existieren mehrere Schwachstellen im Samsung Core Service, Samsung Blockchain Keystore und Galaxy S22 Modellen. Die Ursachen sind ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen und Zugriffskontrollen, sowie Out-of-bounds Write- und Read Fehler. Ein Angreifer kann diese Schwachstellen ausnutzen, um Code zur Ausf\u00fchrung zu bringen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion oder eine Anmeldung erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027933"
        ]
      },
      "release_date": "2023-05-31T22:00:00.000+00:00",
      "title": "CVE-2023-21508"
    },
    {
      "cve": "CVE-2023-21507",
      "notes": [
        {
          "category": "description",
          "text": "In Samsung Android existieren mehrere Schwachstellen im Samsung Core Service, Samsung Blockchain Keystore und Galaxy S22 Modellen. Die Ursachen sind ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen und Zugriffskontrollen, sowie Out-of-bounds Write- und Read Fehler. Ein Angreifer kann diese Schwachstellen ausnutzen, um Code zur Ausf\u00fchrung zu bringen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion oder eine Anmeldung erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027933"
        ]
      },
      "release_date": "2023-05-31T22:00:00.000+00:00",
      "title": "CVE-2023-21507"
    },
    {
      "cve": "CVE-2023-21506",
      "notes": [
        {
          "category": "description",
          "text": "In Samsung Android existieren mehrere Schwachstellen im Samsung Core Service, Samsung Blockchain Keystore und Galaxy S22 Modellen. Die Ursachen sind ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen und Zugriffskontrollen, sowie Out-of-bounds Write- und Read Fehler. Ein Angreifer kann diese Schwachstellen ausnutzen, um Code zur Ausf\u00fchrung zu bringen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion oder eine Anmeldung erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027933"
        ]
      },
      "release_date": "2023-05-31T22:00:00.000+00:00",
      "title": "CVE-2023-21506"
    },
    {
      "cve": "CVE-2023-21505",
      "notes": [
        {
          "category": "description",
          "text": "In Samsung Android existieren mehrere Schwachstellen im Samsung Core Service, Samsung Blockchain Keystore und Galaxy S22 Modellen. Die Ursachen sind ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen und Zugriffskontrollen, sowie Out-of-bounds Write- und Read Fehler. Ein Angreifer kann diese Schwachstellen ausnutzen, um Code zur Ausf\u00fchrung zu bringen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion oder eine Anmeldung erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027933"
        ]
      },
      "release_date": "2023-05-31T22:00:00.000+00:00",
      "title": "CVE-2023-21505"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-21514 (GCVE-0-2023-21514)

FKIE_CVE-2023-21514

GHSA-XM4H-VRCX-RW8C

GSD-2023-21514

VAR-202305-2534

WID-SEC-W-2023-1344

Tags

Sightings

Nomenclature