Researchers from cybersecurity firm NCC Group discovered a vulnerability in the Galaxy Store. The dangerous vulnerability in Samsung’s mobile app store was discovered between November 23 and December 3 last year.The vulnerability, numbered CVE-2023-21433, could be exploited by attackers to secretly install apps on Galaxy devices. Another vulnerability, identified as CVE-2023-21434, was compromising device owners’ personal information by allowing JavaScript to be run on smartphones.
It is important to check for updates
The vulnerability CVE-2023-21433 does not work on Samsung phones running this operating system, thanks to the security features of Android 13. In addition, the South Korean company eliminated both vulnerabilities by releasing version 4.5.49.8 of the Galaxy Store on the first day of 2023.
To avoid being affected by the dangerous vulnerabilities mentioned above, it’s a good idea to make sure that you have the latest version of Galaxy Store installed on your Galaxy device. You can use the app’s Settings > About Galaxy Store menu to check this.
18412
