Home

Description

Improper input validation in SamsungVideoPlayer prior to versions 7.3.29.1 in Android 12, 7.3.36.1 in Android 13, and 7.3.41.230 in Android 14 allows local attackers to access video file of other users.

PUBLISHED Reserved 2024-05-07 | Published 2024-10-08 | Updated 2024-10-08 | Assigner SamsungMobile




MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Problem types

CWE-20: Improper Input Validation

Product status

Default status
affected

7.3.29.1 in Android 12, 7.3.36.1 in Android 13 and 7.3.41.230 in Android 14
unaffected

References

security.samsungmobile.com/...iceWeb.smsb?year=2024&month=10

cve.org (CVE-2024-34672)

nvd.nist.gov (CVE-2024-34672)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.