Samsung Mobile Samsung Mobile Devices vAndroid 12, 13 - 3 CVEs

CVE-2023-21502

Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands.

MEDIUM CVSS 5.7 Published May 04, 2023

CVE-2023-21491

Improper access control vulnerability in ThemeManager prior to SMR May-2023 Release 1 allows local attackers to write arbitrary files with system privilege.

HIGH CVSS 8.5 Published May 04, 2023

CVE-2023-21461

Improper authorization vulnerability in AutoPowerOnOffConfirmDialog in Settings prior to SMR Mar-2023 Release 1 allows local attacker to turn device off via unprotected activity.

MEDIUM CVSS 4.0 Published Mar 16, 2023

Version Android 12, 13

Known Vulnerabilities

CVE-2023-21502

CVE-2023-21491

CVE-2023-21461