Abuse of remote unlock in Find My Mobile prior to version 7.3.13.4 allows physical attacker to unlock the device remotely by resetting the Samsung Account password with SMS verification when user lost the device.
oryginał ENCVSS Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HSamsung Find My Mobile
APPSamsung< 7.3.13.4
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Powiązane podatności
CVE-2022-33707MEDIUM5.3ten sam produkt
Improper identifier creation logic in Find My Mobile prior to version 7.2.24.12 allows attacker to identify th...
CVE-2022-36878LOW3.3ten sam produkt
Exposure of Sensitive Information in Find My Mobile prior to version 7.2.25.14 allows local attacker to access...
CVE-2022-30741LOW3.3ten sam produkt
Sensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7.2.24.12 allo...
CVE-2022-30742LOW3.3ten sam produkt
Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2.24.12 allows ...
CVE-2025-4632CRITICAL9.8⚠ KEVPL ✓ten sam vendor
Path Traversal w Samsung MagicINFO 9 Server — zapis plików jako SYSTEM