Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-20839

Improper access control in Samsung Voice Recorder prior to versions 21.5.16.01 in Android 12 and Android 13, 21.4.51.02 in Android 14 allows physical attackers to access recording files on the lock screen.

Published

2024-03-05T05:15:12.007

Last Modified

2024-12-23T16:33:22.507

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.6 (MEDIUM)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	samsung	voice_recorder	< 21.5.16.01	Yes
Operating System	google	android	12.0	No
Operating System	google	android	13.0	No
Application	samsung	voice_recorder	< 21.4.51.02	Yes
Operating System	google	android	14.0	No

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=03 Vendor Advisory ([email protected])
https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=03 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)