Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-42571

Abuse of remote unlock in Find My Mobile prior to version 7.3.13.4 allows physical attacker to unlock the device remotely by resetting the Samsung Account password with SMS verification when user lost the device.

Published

2023-12-05T03:15:17.573

Last Modified

2024-11-21T08:22:48.830

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.6 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	samsung	find_my_mobile	< 7.3.13.4	Yes

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12 Vendor Advisory ([email protected])
https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)