Lucene search
HistorySep 04, 2024 - 6:15 a.m.
CVE-2024-34649
improper access control
dex mode
multitasking framework
physical attackers
unlocked screen
CVSS3
2.4
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0
Percentile
13.4%
Improper access control in new Dex Mode in multitasking framework prior to SMR Sep-2024 Release 1 allows physical attackers to temporarily access an unlocked screen.
Affected configurations
Node
samsungandroidMatch14.0-
ORsamsungandroidMatch14.0smr-apr-2022-r1
ORsamsungandroidMatch14.0smr-apr-2023-r1
ORsamsungandroidMatch14.0smr-apr-2024-r1
ORsamsungandroidMatch14.0smr-aug-2022-r1
ORsamsungandroidMatch14.0smr-aug-2023-r1
ORsamsungandroidMatch14.0smr-aug-2024-r1
ORsamsungandroidMatch14.0smr-dec-2021-r1
ORsamsungandroidMatch14.0smr-dec-2022-r1
ORsamsungandroidMatch14.0smr-dec-2023-r1
ORsamsungandroidMatch14.0smr-feb-2022-r1
ORsamsungandroidMatch14.0smr-feb-2023-r1
ORsamsungandroidMatch14.0smr-feb-2024-r1
ORsamsungandroidMatch14.0smr-jan-2022-r1
ORsamsungandroidMatch14.0smr-jan-2023-r1
ORsamsungandroidMatch14.0smr-jan-2024-r1
ORsamsungandroidMatch14.0smr-jul-2022-r1
ORsamsungandroidMatch14.0smr-jul-2023-r1
ORsamsungandroidMatch14.0smr-jul-2024-r1
ORsamsungandroidMatch14.0smr-jun-2022-r1
ORsamsungandroidMatch14.0smr-jun-2023-r1
ORsamsungandroidMatch14.0smr-jun-2024-r1
ORsamsungandroidMatch14.0smr-mar-2022-r1
ORsamsungandroidMatch14.0smr-mar-2023-r1
ORsamsungandroidMatch14.0smr-mar-2024-r1
ORsamsungandroidMatch14.0smr-may-2022-r1
ORsamsungandroidMatch14.0smr-may-2023-r1
ORsamsungandroidMatch14.0smr-may-2024-r1
ORsamsungandroidMatch14.0smr-nov-2021-r1
ORsamsungandroidMatch14.0smr-nov-2022-r1
ORsamsungandroidMatch14.0smr-nov-2023-r1
ORsamsungandroidMatch14.0smr-oct-2022-r1
ORsamsungandroidMatch14.0smr-oct-2023-r1
ORsamsungandroidMatch14.0smr-sep-2022-r1
ORsamsungandroidMatch14.0smr-sep-2023-r1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| samsung | android | 14.0 | cpe:2.3:o:samsung:android:14.0:-:*:*:*:*:*:* |
| samsung | android | 14.0 | cpe:2.3:o:samsung:android:14.0:smr-apr-2022-r1:*:*:*:*:*:* |
| samsung | android | 14.0 | cpe:2.3:o:samsung:android:14.0:smr-apr-2023-r1:*:*:*:*:*:* |
| samsung | android | 14.0 | cpe:2.3:o:samsung:android:14.0:smr-apr-2024-r1:*:*:*:*:*:* |
| samsung | android | 14.0 | cpe:2.3:o:samsung:android:14.0:smr-aug-2022-r1:*:*:*:*:*:* |
| samsung | android | 14.0 | cpe:2.3:o:samsung:android:14.0:smr-aug-2023-r1:*:*:*:*:*:* |
| samsung | android | 14.0 | cpe:2.3:o:samsung:android:14.0:smr-aug-2024-r1:*:*:*:*:*:* |
| samsung | android | 14.0 | cpe:2.3:o:samsung:android:14.0:smr-dec-2021-r1:*:*:*:*:*:* |
| samsung | android | 14.0 | cpe:2.3:o:samsung:android:14.0:smr-dec-2022-r1:*:*:*:*:*:* |
| samsung | android | 14.0 | cpe:2.3:o:samsung:android:14.0:smr-dec-2023-r1:*:*:*:*:*:* |
Related
vulnrichment
vulnrichment
CVE-2024-34649
2024-09-04 05:32:33
cvelist
cvelist
CVE-2024-34649
2024-09-04 05:32:33
cve
cve
CVE-2024-34649
2024-09-04 06:15:14
CVSS3
2.4
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0
Percentile
13.4%
Related for NVD:CVE-2024-34649