2 matches found
CVE-2023-21422
Improper authorization vulnerability in semAddPublicDnsAddr in WifiSevice prior to SMR Jan-2023 Release 1 allows attackers to set custom DNS server without permission via binding WifiService...
CVE-2023-21422
The CVE-2023-21422 entry relates to Samsung’s WifiSevice, where the function semAddPublicDnsAddr allows binding the WifiService to set a custom DNS server without permission. Affected are WifiSevice versions prior to SMR Jan-2023 Release 1. The root cause is improper authorization in semAddPublic...