Lucene search
HistoryDec 05, 2023 - 3:15 a.m.
CVE-2023-42570
access control
knoxcustommanagerservice
sim pin
vulnerability
cve-2023-42570
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
0.0004 Low
EPSS
Percentile
9.0%
Improper access control vulnerability in KnoxCustomManagerService prior to SMR Dec-2023 Release 1 allows attacker to access device SIM PIN.
Affected configurations
Node
samsungandroidRange11.0–14.0
ORsamsungandroidMatch14.0-
ORsamsungandroidMatch14.0smr-apr-2023-r1
ORsamsungandroidMatch14.0smr-aug-2023-r1
ORsamsungandroidMatch14.0smr-dec-2022-r1
ORsamsungandroidMatch14.0smr-feb-2023-r1
ORsamsungandroidMatch14.0smr-jan-2023-r1
ORsamsungandroidMatch14.0smr-jul-2023-r1
ORsamsungandroidMatch14.0smr-jun-2023-r1
ORsamsungandroidMatch14.0smr-mar-2023-r1
ORsamsungandroidMatch14.0smr-may-2023-r1
ORsamsungandroidMatch14.0smr-nov-2022-r1
ORsamsungandroidMatch14.0smr-nov-2023-r1
ORsamsungandroidMatch14.0smr-oct-2022-r1
ORsamsungandroidMatch14.0smr-oct-2023-r1
ORsamsungandroidMatch14.0smr-sep-2023-r1
Related
cvelist
cvelist
CVE-2023-42570
2023-12-05 02:44:27
prion
prion
Improper access control
2023-12-05 03:15:00
cve
cve
CVE-2023-42570
2023-12-05 03:15:17
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
0.0004 Low
EPSS
Percentile
9.0%
Related for NVD:CVE-2023-42570