Lucene search

[email protected]NVD:CVE-2023-21462

HistoryMar 16, 2023 - 9:15 p.m.

CVE-2023-21462

2023-03-1621:15:12

CWE-215

[email protected]

web.nvd.nist.gov

vulnerability

android

mac address

permission

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

The sensitive information exposure vulnerability in Quick Share Agent prior to versions 3.5.14.18 in Android 12 and 3.5.16.20 in Android 13 allows to local attacker to access MAC address without related permission.

Affected configurations

NVD

Node

googleandroidMatch12.0

AND

samsungquick_shareRange<3.5.14.18

Node

googleandroidMatch13.0

AND

samsungquick_shareRange<3.5.16.20

References

security.samsungmobile.com/serviceWeb.smsb?year=2023&month=03

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2023-21462

prion1 cve1 cvelist1