Quick Share
CVE-2023-21462
LOW
Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
The sensitive information exposure vulnerability in Quick Share Agent prior to versions 3.5.14.18 in Android 12 and 3.5.16.20 in Android 13 allows to local attacker to access MAC address without related permission.
AnalysisAI
The sensitive information exposure vulnerability in Quick Share Agent prior to versions 3.5.14.18 in Android 12 and 3.5.16.20 in Android 13 allows to local attacker to access MAC address without. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-215. The sensitive information exposure vulnerability in Quick Share Agent prior to versions 3.5.14.18 in Android 12 and 3.5.16.20 in Android 13 allows to local attacker to access MAC address without related permission. Affected products include: Samsung Quick Share.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Quick Share
View allThere exists an auth bypass in Google Quickshare where an attacker can upload an unknown file type to a victim. Rated me
Improper access control vulnerability in Quick Share prior to 13.5.52.0 allows local attacker to access local files. Rat
Improper access control vulnerability in Quick Share prior to version 13.1.2.4 allows attacker to access internal files
Path traversal in Quick Share Agent prior to version 3.5.14.47 in Android 12, 3.5.19.41 in Android 13, and 3.5.19.42 in
Improper access control vulnerability in QuickShare prior to version 13.2.3.5 allows attackers to access sensitive infor
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today