CVE-2023-42580

Publication date

2023-12-05 02:44:38

Family

SamsungMobile

State

PUBLISHED

Description

Improper URL validation from MCSLaunch deeplink in Galaxy Store prior to version 4.5.64.4 allows attackers to execute JavaScript API to install APK from Galaxy Store.