CVE-2023-42575

Summary

Improper Authentication vulnerability in Samsung Pass prior to version 4.3.00.17 allows physical attackers to bypass authentication due to invalid flag setting.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Pass4.3.00.17unaffected

Weaknesses

  • CWE-287: Improper Authentication

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References