CVE-2023-21464
CVSS V2 None
CVSS V3 None
Description
Improper access control in Samsung Calendar prior to versions 12.4.02.9000 in Android 13 and 12.3.08.2000 in Android 12 allows local attacker to configure improper status.
Overview
- CVE ID
- CVE-2023-21464
- Assigner
- mobile.security@samsung.com
- Vulnerability Status
- Analyzed
- Published Version
- 2023-03-16T21:15:12
- Last Modified Date
- 2023-03-23T17:30:46
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| AND | ||||
| cpe:2.3:a:samsung:calendar:*:*:*:*:*:*:*:* | 1 | OR | 12.4.02.9000 | |
| cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:a:samsung:calendar:*:*:*:*:*:*:*:* | 1 | OR | 12.3.08.2000 | |
| cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:* | 0 | OR |
References
| Reference URL | Reference Tags |
|---|---|
| https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=03 | Vendor Advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-21464 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21464 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-04-17 06:36:45 | Added to TrackCVE | |||
| 2023-04-17 06:36:46 | Weakness Enumeration | new |