CVE-2024-20853

Sažetak

Improper verification of intent by broadcast receiver vulnerability in ThemeStore prior to 5.3.05.2 allows local attackers to write arbitrary files to sandbox of ThemeStore.

Reference

https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=04
https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=04

CVSS

Base:	5.1
Impact:	2.5
Exploitability:	2.5

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	LOW	LOW

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Zadnje važnije ažuriranje

12-01-2026 - 19:26

Objavljeno

02-04-2024 - 03:15