CVE-2024-20871

Summary

Improper authorization vulnerability in Samsung Keyboard prior to version One UI 5.1.1 allows physical attackers to partially bypass the factory reset protection.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung KeyboardOne UI 5.1.1unaffected

Weaknesses

  • CWE-285: Improper Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References