Source |
The Hacker News |
Identifiant |
8303390 |
Date de publication |
2023-01-23 17:31:00 (vue: 2023-01-23 13:08:29) |
Titre |
Samsung Galaxy Store App Found Vulnerable to Sneaky App Installs and Fraud |
Texte |
Two security flaws have been disclosed in Samsung's Galaxy Store app for Android that could be exploited by a local attacker to stealthily install arbitrary apps or direct prospective victims to fraudulent landing pages on the web.
The issues, tracked as CVE-2023-21433 and CVE-2023-21434, were discovered by NCC Group and notified to the South Korean chaebol in November and December 2022. Samsung |
Envoyé |
Oui |
Condensat |
2022 2023 21433 21434 android app apps arbitrary as cve attacker been chaebol could cve december direct disclosed exploited flaws found fraud fraudulent galaxy group have install installs issues korean landing local ncc notified november pages prospective samsung security sneaky south stealthily store tracked two victims vulnerable web were discovered by |
Tags |
|
Stories |
|
Notes |
★★★
|
Move |
|