CVE-2024-32670

July 10, 2024, 1:15 a.m.

Tags

CWE-200
PSIRT@samsung.com
2024-07-10
CVE-2024-32670

Product(s) Impacted

Samsung Galaxy SmartTag2

  • before 0.20.04

Description

Exposure of Sensitive Information to an Unauthorized Actor in Samsung Galaxy SmartTag2 prior to 0.20.04 allows attackes to potentially identify the tag's location by scanning the BLE adversting.

Weaknesses

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

CWE ID: 200

Date

Published: July 10, 2024, 1:15 a.m.

Last Modified: July 10, 2024, 1:15 a.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

PSIRT@samsung.com

References

https://securityreport.samsung.com
PSIRT@samsung.com