What the vulnerability does
01Description
Improper authorization vulnerability in Samsung Internet prior to version 18.0.4.14 allows physical attackers to add bookmarks in secret mode without user authentication.
CVSS base score
4.3/10
CVSS vector
CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Key dates
02Disclosure timeline
October 7, 2022
CVE published
August 3, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2022-31666 Harbor fails to validate user permissions while Viewing, updating and deleting Webhook policies
CVE-2022-39340 OpenFGA Information Disclosure
CVE-2024-8509 Migration toolkit for virtualization: forklift-controller: empty bearer token may perform authentication
CVE-2025-10390 CRMEB UserAddressServices.php editAddress improper authorization
CVE-2023-22480 KubeOperator is vulnerable to unauthorized access to system API
