Vulnerability Details CVE-2023-21470
Improper access control vulnerability in SLocation prior to SMR Apr-2022 Release 1 allows local attackers to get device location information using com.samsung.android.wifi.NETWORK_LOCATION action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 2.4%
CVSS Severity
CVSS v3 Score 4.0
Products affected by CVE-2023-21470
-
cpe:2.3:o:samsung:android:11.0
-
cpe:2.3:o:samsung:android:12.0
-
cpe:2.3:o:samsung:android:13.0