Lucene search
HistoryOct 04, 2023 - 4:15 a.m.
CVE-2023-30727
access control
vulnerability
secsettings
wi-fi
user interaction
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
6.8 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.6%
Improper access control vulnerability in SecSettings prior to SMR Oct-2023 Release 1 allows attackers to enable Wi-Fi and connect arbitrary Wi-Fi without User Interaction.
Affected configurations
Node
samsungandroidMatch11.0-
ORsamsungandroidMatch11.0smr-apr-2021-r1
ORsamsungandroidMatch11.0smr-apr-2022-r1
ORsamsungandroidMatch11.0smr-apr-2023-r1
ORsamsungandroidMatch11.0smr-aug-2021-r1
ORsamsungandroidMatch11.0smr-aug-2022-r1
ORsamsungandroidMatch11.0smr-aug-2023-r1
ORsamsungandroidMatch11.0smr-dec-2020-r1
ORsamsungandroidMatch11.0smr-dec-2021-r1
ORsamsungandroidMatch11.0smr-dec-2022-r1
ORsamsungandroidMatch11.0smr-feb-2021-r1
ORsamsungandroidMatch11.0smr-feb-2022-r1
ORsamsungandroidMatch11.0smr-feb-2023-r1
ORsamsungandroidMatch11.0smr-jan-2021-r1
ORsamsungandroidMatch11.0smr-jan-2022-r1
ORsamsungandroidMatch11.0smr-jan-2023-r1
ORsamsungandroidMatch11.0smr-jul-2021-r1
ORsamsungandroidMatch11.0smr-jul-2022-r1
ORsamsungandroidMatch11.0smr-jul-2023-r1
ORsamsungandroidMatch11.0smr-jun-2021-r1
ORsamsungandroidMatch11.0smr-jun-2022-r1
ORsamsungandroidMatch11.0smr-jun-2023-r1
ORsamsungandroidMatch11.0smr-mar-2021-r1
ORsamsungandroidMatch11.0smr-mar-2022-r1
ORsamsungandroidMatch11.0smr-mar-2023-r1
ORsamsungandroidMatch11.0smr-may-2021-r1
ORsamsungandroidMatch11.0smr-may-2022-r1
ORsamsungandroidMatch11.0smr-may-2023-r1
ORsamsungandroidMatch11.0smr-nov-2021-r1
ORsamsungandroidMatch11.0smr-nov-2022-r1
ORsamsungandroidMatch11.0smr-oct-2021-r1
ORsamsungandroidMatch11.0smr-oct-2022-r1
ORsamsungandroidMatch11.0smr-sep-2021-r1
ORsamsungandroidMatch11.0smr-sep-2022-r1
ORsamsungandroidMatch11.0smr-sep-2023-r1
ORsamsungandroidMatch12.0-
ORsamsungandroidMatch12.0smr-apr-2022-r1
ORsamsungandroidMatch12.0smr-apr-2023-r1
ORsamsungandroidMatch12.0smr-aug-2022-r1
ORsamsungandroidMatch12.0smr-aug-2023-r1
ORsamsungandroidMatch12.0smr-dec-2021-r1
ORsamsungandroidMatch12.0smr-dec-2022-r1
ORsamsungandroidMatch12.0smr-feb-2022-r1
ORsamsungandroidMatch12.0smr-feb-2023-r1
ORsamsungandroidMatch12.0smr-jan-2022-r1
ORsamsungandroidMatch12.0smr-jan-2023-r1
ORsamsungandroidMatch12.0smr-jul-2022-r1
ORsamsungandroidMatch12.0smr-jul-2023-r1
ORsamsungandroidMatch12.0smr-jun-2022-r1
ORsamsungandroidMatch12.0smr-jun-2023-r1
ORsamsungandroidMatch12.0smr-mar-2022-r1
ORsamsungandroidMatch12.0smr-mar-2023-r1
ORsamsungandroidMatch12.0smr-may-2022-r1
ORsamsungandroidMatch12.0smr-may-2023-r1
ORsamsungandroidMatch12.0smr-nov-2021-r1
ORsamsungandroidMatch12.0smr-nov-2022-r1
ORsamsungandroidMatch12.0smr-oct-2022-r1
ORsamsungandroidMatch12.0smr-sep-2022-r1
ORsamsungandroidMatch12.0smr-sep-2023-r1
ORsamsungandroidMatch13.0-
ORsamsungandroidMatch13.0smr-apr-2023-r1
ORsamsungandroidMatch13.0smr-aug-2023-r1
ORsamsungandroidMatch13.0smr-dec-2022-r1
ORsamsungandroidMatch13.0smr-feb-2023-r1
ORsamsungandroidMatch13.0smr-jan-2023-r1
ORsamsungandroidMatch13.0smr-jul-2023-r1
ORsamsungandroidMatch13.0smr-jun-2023-r1
ORsamsungandroidMatch13.0smr-mar-2023-r1
ORsamsungandroidMatch13.0smr-may-2023-r1
ORsamsungandroidMatch13.0smr-nov-2022-r1
ORsamsungandroidMatch13.0smr-oct-2022-r1
ORsamsungandroidMatch13.0smr-sep-2023-r1
Related
cvelist
cvelist
CVE-2023-30727
2023-10-04 03:02:43
cve
cve
CVE-2023-30727
2023-10-04 04:15:12
prion
prion
Improper access control
2023-10-04 04:15:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
6.8 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.6%
Related for NVD:CVE-2023-30727