CVE-2024-20834 | THREATINT

Description

The sensitive information exposure vulnerability in WlanTest prior to SMR Mar-2024 Release 1 allows local attackers to access MAC address without proper permission.

PUBLISHED Reserved 2023-12-05 | Published 2024-03-05 | Updated 2024-08-01 | Assigner SamsungMobile

LOW: 3.3CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Problem types

CWE-927 : Use of Implicit Intent for Sensitive Communication

Product status

Default status

affected

SMR Mar-2024 Release in Android 11, 12, 13, 14

unaffected

References

security.samsungmobile.com/...Update.smsb?year=2024&month=03

cve.org (CVE-2024-20834)

nvd.nist.gov (CVE-2024-20834)

Download JSON

help @ threatint.eu