Protect Your Samsung Galaxy Device: Galaxy Store Vulnerability Allowed Attackers to Access Data

CVECVE-2023-42581
CVSScvssV3_1: 7.5
SourceCVE-2023-42581

The Samsung Galaxy Store, which is used to download apps on Samsung Galaxy devices, had a vulnerability prior to version 4.5.64.4 that could allow attackers to access users’ data.

The vulnerability, tracked as CVE-2023-42581, was an issue with URL validation of deeplinks used within the InstantPlay feature of the Galaxy Store. By crafting a malicious deeplink, attackers could execute JavaScript APIs and potentially access data on users’ devices.

This type of vulnerability, known as improper URL validation, can be exploited if the application fails to properly sanitize URLs. When clicked, a malicious link could trick the app or browser into thinking it came from a trusted source and then run code or access resources it should not.

If exploited, this could allow attackers to steal sensitive information like account credentials, contacts, photos and more that are stored on the device. Thankfully, the CVSS score of 7.5 also means full device takeover was less likely.

The good news is Samsung has released an update, version 4.5.64.4, to address this issue. All Samsung Galaxy users should ensure they have the latest version of the Galaxy Store installed to protect their devices and data. It’s also recommended to only install apps from trusted sources like the official Galaxy Store.

References