CVE-2023-21439 HIGH

CVE-2023-21439

Vendor Samsung Mobile

Product Samsung Mobile Devices

Weakness CWE-20 · Input validation

Published February 9, 2023

Last update March 24, 2025

CVSS base score

8.5/10

Attack vector Local

Attack complexity Low

Privileges required None

User interaction None

Confidentiality High

Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:L

What the vulnerability does

01Description

Improper input validation vulnerability in UwbDataTxStatusEvent prior to SMR Feb-2023 Release 1 allows attackers to launch certain activities.

Key dates

February 9, 2023 CVE published

March 24, 2025 Record updated

External resources

Related vulnerabilities

CVE CVE-2023-21439

CWE CWE-20

CVSS 8.5 / HIGH

Vendor Samsung Mobile

Product Samsung Mobile Devices

Affected ≥ S(12), T(13) and < SMR Feb-2023 Release 1