Vulnerability Database

296,202

Total vulnerabilities in the database

CVE-2023-42564

Improper access control in knoxcustom service prior to SMR Dec-2023 Release 1 allows attacker to send broadcast with system privilege.

Published: Dec 5, 2023
Updated: Dec 9, 2023
CVE: CVE-2023-42564
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
samsung / android	14.0	14.0.x
samsung / android	14.0-smr-apr-2023-r1	14.0-smr-apr-2023-r1.x
samsung / android	14.0-smr-aug-2023-r1	14.0-smr-aug-2023-r1.x
samsung / android	14.0-smr-dec-2022-r1	14.0-smr-dec-2022-r1.x
samsung / android	14.0-smr-feb-2023-r1	14.0-smr-feb-2023-r1.x
samsung / android	14.0-smr-jan-2023-r1	14.0-smr-jan-2023-r1.x
samsung / android	14.0-smr-jul-2023-r1	14.0-smr-jul-2023-r1.x
samsung / android	14.0-smr-jun-2023-r1	14.0-smr-jun-2023-r1.x
samsung / android	14.0-smr-mar-2023-r1	14.0-smr-mar-2023-r1.x
samsung / android	14.0-smr-may-2023-r1	14.0-smr-may-2023-r1.x
samsung / android	14.0-smr-nov-2022-r1	14.0-smr-nov-2022-r1.x
samsung / android	14.0-smr-nov-2023-r1	14.0-smr-nov-2023-r1.x
samsung / android	14.0-smr-oct-2022-r1	14.0-smr-oct-2022-r1.x
samsung / android	14.0-smr-oct-2023-r1	14.0-smr-oct-2023-r1.x
samsung / android	14.0-smr-sep-2023-r1	14.0-smr-sep-2023-r1.x
samsung / android	12.0	14.0

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=12