Lucene search

[email protected]NVD:CVE-2024-34627

HistoryAug 07, 2024 - 2:15 a.m.

CVE-2024-34627

2024-08-0702:15:39

CWE-125

[email protected]

web.nvd.nist.gov

samsung notes

out-of-bounds read

parsing

memory protection

local attackers

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

9.5%

JSON

Out-of-bounds read in parsing implemention in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory.

Affected configurations

Nvd

Node

samsungnotesRange<4.4.21.62

VendorProductVersionCPE
samsungnotes*cpe:2.3:a:samsung:notes:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
samsung	notes	*	cpe:2.3:a:samsung:notes::::::::

References

security.samsungmobile.com/serviceWeb.smsb?year=2024&month=08

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

9.5%

JSON

Related for NVD:CVE-2024-34627

cve1 vulnrichment1 cvelist1