Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-42577

Improper Access Control in Samsung Voice Recorder prior to versions 21.4.15.01 in Android 12 and Android 13, 21.4.50.17 in Android 14 allows physical attackers to access Voice Recorder information on the lock screen.

Published

2023-12-05T03:15:18.623

Last Modified

2024-11-21T08:22:49.590

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.8 (MEDIUM)

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	samsung	samsung_voice_recorder	< 21.4.15.01	Yes
Operating System	samsung	android	12.0	No
Operating System	samsung	android	13.0	No
Operating System	samsung	samsung_voice_recorder	< 21.4.50.17	Yes
Operating System	samsung	android	14.0	No

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12 Vendor Advisory ([email protected])
https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)