CVE-2023-42542

Summary

Improper access control vulnerability in Samsung Push Service prior to 3.4.10 allows local attackers to get register ID to identify the device.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Push Service3.4.10unaffected

Weaknesses

  • CWE-284: Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References