 |
| Two vulnerabilities have been discovered in the Samsung Galaxy App Store |
Security researchers have discovered two vulnerabilities in the Samsung Galaxy App Store that could allow hackers to install any app from the store without the user's knowledge or redirect victims to a malicious website.
Researchers from information security company (NCC Group) discovered the two vulnerabilities between November 23 and December 3, 2022. On January 1, Samsung announced that the vulnerabilities had been patched and released new version 4.5.49.8 on the Galaxy App Store.
Today, the NCC group released technical details of both vulnerabilities, along with proof-of-concept exploit code for each.
It should be noted that both attacks require local access, which is a no-brainer for hackers and malware distributors targeting mobile devices.
The first vulnerability, tracked under ID (CVE-2023-21433), allows an attacker to install any app available in the Galaxy App Store without the user's knowledge because the Galaxy App Store does not handle it, causing the app on the device to send random install requests from the store. .
Another vulnerability tracked with ID (CVE-2023-21434) allows JavaScript code to be executed on the target device, which could trick a victim into visiting a malicious website in the store's web viewer.
Researchers warn that exploiting the vulnerability could allow an attacker to access sensitive information and that automatically installing and running apps from the Galaxy App Store without the user's knowledge could also lead to data or privacy breaches, especially if the attacker uses malicious apps to download apps. from the store.
It should be noted that due to additional protections, this vulnerability (CVE-2023-21433) cannot be exploited on Samsung devices running Android 13, even if they are running a previous vulnerable version of the Galaxy App Store on the latest. A copy of the satellite operating system. Google.
Galaxy devices that no longer receive updates and support from the company and are still using an outdated version of the Galaxy App Store are vulnerable to vulnerabilities discovered by researchers at (NCC Group).