Design/Logic Flaw

2023-11-0708:15:00

PRIOn knowledge base

www.prio-n.com

implicit intent

sensitive communication

vulnerability

samsung account

arbitrary file access

privilege escalation

7.1 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

18.3%

JSON

Use of implicit intent for sensitive communication vulnerability in startMandatoryCheckActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.

CPENameOperatorVersion
accountlt14.5.00.7

CPE	Name	Operator	Version
	account	lt	14.5.00.7

References

security.samsungmobile.com/serviceWeb.smsb?year=2023&month=11