MEDIUM🇵🇱 Wersja polska

CVE-2023-42543

CVSS 6.2v3.1pub. 2023-11-07upd. 2024-11-21

Improper verification of intent by broadcast receiver vulnerability in Bixby Voice prior to version 3.3.35.12 allows attackers to access arbitrary data with Bixby Voice privilege.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  • Samsung Bixby Voice

    APP
    Samsung
    < 3.3.35.12
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2021-25352MEDIUM5.5ten sam produkt

Using PendingIntent with implicit intent in Bixby Voice prior to version 3.0.52.14 allows attackers to execute...

CVE-2021-25398LOW3.3ten sam produkt

Intent redirection vulnerability in Bixby Voice prior to version 3.1.12 allows attacker to access contacts.

CVE-2025-4632CRITICAL9.8⚠ KEVPL ✓ten sam vendor

Path Traversal w Samsung MagicINFO 9 Server — zapis plików jako SYSTEM

CVE-2026-28573CRITICAL10.0ten sam vendor

In AndroidManifest.xml, there is a possible persistent denial of service due to a missing permission check. Th...

CVE-2025-52908CRITICAL9.8PL ✓ten sam vendor

Buffer overflow w sterowniku Wi-Fi Samsung Exynos przez błędną obsługę NL80211