CVE-2023-21462
First published: Thu Mar 16 2023(Updated: )
The sensitive information exposure vulnerability in Quick Share Agent prior to versions 3.5.14.18 in Android 12 and 3.5.16.20 in Android 13 allows to local attacker to access MAC address without related permission.
Credit: mobile.security@samsung.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samsung Quick Share | <3.5.14.18 | |
| Google Android | =12.0 | |
| Samsung Quick Share | <3.5.16.20 | |
| Google Android | =13.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2023-21462?
CVE-2023-21462 is a sensitive information exposure vulnerability in Quick Share Agent prior to versions 3.5.14.18 in Android 12 and 3.5.16.20 in Android 13.
How does CVE-2023-21462 affect Samsung Quick Share?
CVE-2023-21462 affects Samsung Quick Share versions prior to 3.5.14.18 and 3.5.16.20 in Android 12 and Android 13 respectively.
What is the severity of CVE-2023-21462?
The severity of CVE-2023-21462 is medium with a CVSS score of 3.3.
How can a local attacker exploit CVE-2023-21462?
A local attacker can exploit CVE-2023-21462 to access the MAC address without the related permission.
How can I fix CVE-2023-21462?
To fix CVE-2023-21462, it is recommended to update Samsung Quick Share to versions 3.5.14.18 or higher in Android 12, and versions 3.5.16.20 or higher in Android 13.
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/mitre-cve
- source/MITRE
- vendor/samsung
- canonical/samsung quick share
- vendor/google
- canonical/google android
- version/google android/12.0
- version/google android/13.0