Implicit Intent Vulnerability in Samsung Account: Arbitrary File Access via startEmailValidationActivity
CVE-2023-42547 · MEDIUM Severity
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Use of implicit intent for sensitive communication vulnerability in startEmailValidationActivity in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege.
Learn more about our Web Application Penetration Testing UK.