Samsung Mobile Samsung Mobile Devices vSMR Nov-2024 Release in Android 14 - 4 CVEs

Improper input validation in Dressroom prior to SMR Nov-2024 Release 1 allow physical attackers to access data across multiple user profiles.

MEDIUM CVSS 4.6 Published Nov 06, 2024

Improper authorization in Settings prior to SMR Nov-2024 Release 1 allows physical attackers to access stored WiFi password in Maintenance Mode.

LOW CVSS 2.4 Published Nov 06, 2024

Incorrect default permissions in Crane prior to SMR Nov-2024 Release 1 allows local attackers to access files with phone privilege.

MEDIUM CVSS 4.0 Published Nov 06, 2024

Improper access control in Dex Mode prior to SMR Nov-2024 Release 1 allows physical attackers to temporarily access to unlocked screen.

LOW CVSS 2.4 Published Nov 06, 2024

Version SMR Nov-2024 Release in Android 14