Vulnerability in Samsung Internet
CVE-2024-34671
Use of implicit intent for sensitive communication in translation혻in Samsung Internet prior to version 26.0.3.1 allows local attackers to get sensitive information. User interaction is required for triggering this vulnerability.
EPSS: 0.002 (5.9th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 3.3 (Low). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N.
Affected products
- Samsung Internet
- Samsung Mobile Internet — versions 26.0.3.1
References
- mobile.security@samsung.com (Vendor Advisory)
Frequently asked questions
- What is CVE-2024-34671?
- CVE-2024-34671 is a low-severity vulnerability in Samsung Internet, classified under CWE-927: USE OF IMPLICIT INTENT FOR SENSITIVE COMMUNICATION. CVSS score: 3.3/10. Published 2024-10-08.
- How severe is CVE-2024-34671?
- Low severity. CVSS v3 base score is 3.3 out of 10.