These security flaws are being shipped on Samsung’s Android smartphones and tablets. The South Korea-based tech giant has fixed both vulnerabilities, but users will need to update the store to apply these fixes. Samsung has already rolled out the Galaxy Store version 22.214.171.124 update to patch both of these security issues.
Samsung Galaxy Store security flaw: What are they
The first vulnerability is named CVE-2023-21433 and it is caused by “improper access control” in the Galaxy Store. This flaw allows attackers to install apps on a user’s device without their permission. For hackers to install the app, it has to be available on the Galaxy Store in the first place. However, the issue only affects Samsung Galaxy devices running Android 12 and older.
Devices that have been upgraded to Android 13 are immune to this particular issue. The impact of this vulnerability is relatively minor as it can only install apps from the app store. However, this is not a safe practice and used should fix the issue immediately.
Samsung AX46 Air Purifier: Bigger but is it better?