Do you have a Samsung smartphone? Mistrust: Two Galaxy Store vulnerabilities have just been discovered by cybersecurity researchers, CVE-2023-21433 and CVE-2023-21434. If possible, update the app store now to avoid problems.
Two security vulnerabilities were discovered within the application Samsung Galaxy Store for Android that could be exploited by an attacker to stealthily install arbitrary applications or direct potential victims to fraudulent pages on the web.
The issues, denominated as CVE-2023-21433 and CVE-2023-21434, were discovered by the NCC Group and notified to South Korea in November and December 2022. Samsung categorized the bugs as moderate risk and released fixes in version 4.5.49.8 earlier this month.
Galaxy Store: two vulnerabilities detected, update the application as soon as possible
Samsung Galaxy Store, formerly known as Samsung Apps and Galaxy Apps, is a dedicated app store used for Android devices manufactured by Samsung. It was launched in September 2009. It is not often subject to bugs, but it is better to be wary of these two discovered vulnerabilities.
The first of the two vulnerabilities is CVE-2023-21433. It could allow a malicious Android application already installed on a Samsung device to install any application available on the Galaxy Store. Samsung described it as a case of improper access control which the company says has been fixed.
Read: Security vulnerabilities: Samsung, LG and other vulnerable Android smartphones
The second vulnerability, CVE-2023-21434allows a malicious actor to navigate to a domain under its control. ” Tapping a malicious hyperlink in Google Chrome or a malicious app pre-installed on a Samsung device can bypass Samsung’s URL filter and launch a webview to an attacker-controlled domain said Ken Gannon, a researcher at the NCC Group.
The vulnerabilities only affect Samsung devices running Android 12 and earlier, and do not affect those on the latest version (Android 13). Samsung has rolled out security updates for the month of January 2023 to address several flaws, some of which could be exploited to modify operator network settings or authorization and perform arbitrary code execution, so best to update the app now .
Source : NCC-Group
