CVE-2024-32670 Vulnerability Details

  /     /     /  

CVE-2024-32670 Metadata Quick Info

CVE Published: 10/07/2024 | CVE Updated: 02/08/2024 | CVE Year: 2024
Source: samsung.tv_appliance | Vendor: Samsung | Product: Galaxy SmartTag2
Status : PUBLISHED

---

CVE-2024-32670 Description

Exposure of Sensitive Information to an Unauthorized Actor in Samsung Galaxy SmartTag2 prior to 0.20.04 allows attackes to potentially identify the tag\'s location by scanning the BLE adversting.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID: CWE-200
CWE Name: CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Source: Samsung

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID: CAPEC-131
CAPEC Description: CAPEC-131 Resource Leak Exposure


Source: NVD (National Vulnerability Database).