Improper authentication vulnerability in onCharacteristicReadRequest in Auto Hotspot prior to SMR Feb-2024 Release 1 allows adjacent attackers connect to victim's mobile hotspot without user awareness.
Attack Vector Adjacent Network
Attack Complexity Low
Privileges Required None
Scope Unchanged
Confidentiality Impact None
Integrity Impact High
Availability Impact None
User Interaction None
No CVSS v3.0
No CVSS v2
Vendors | Products |
---|---|
Samsung |
|
Configuration 1 [-]
|
References
Link | Resource |
---|---|
https://security.samsungmobile.com/securityUpdate.smsb?year=2024&month=02 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: SamsungMobile
Published: 2024-02-06T02:23:06.078Z
Updated: 2024-02-06T02:23:06.078Z
Reserved: 2023-12-05T04:57:52.532Z
Link: CVE-2024-20815
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-02-06T03:15:08.720
Modified: 2024-02-14T14:22:16.687
Link: CVE-2024-20815
JSON object: View
Redhat Information
No data.
CWE