CVE-2024-49420

Summary

Improper handling of responses in GamingHub prior to version 6.1.04.6 in Korea, 7.1.03.7 in Global allows remote attackers to launch arbitrary activity.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileGamingHub6.1.04.6 in Korea, 7.1.03.7 in Globalunaffected

Weaknesses

  • CWE-1287: Improper Validation of Specified Type of Input

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References