Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-21464

Improper access control in Samsung Calendar prior to versions 12.4.02.9000 in Android 13 and 12.3.08.2000 in Android 12 allows local attacker to configure improper status.

Published

2023-03-16T21:15:12.747

Last Modified

2024-11-21T07:42:55.583

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.0 (MEDIUM)

Weaknesses

Type: Secondary
CWE-281
Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	samsung	calendar	< 12.4.02.9000	Yes
Operating System	google	android	13.0	No
Application	samsung	calendar	< 12.3.08.2000	Yes
Operating System	google	android	12.0	No

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=03 Vendor Advisory ([email protected])
https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=03 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)