CVE-2013-4764

MEDIUM

Samsung Galaxy S3/S4 - Info Disclosure

Title source: llm
STIX 2.1

Description

Samsung Galaxy S3/S4 exposes an unprotected component allowing an unprivileged app to send arbitrary SMS texts to arbitrary destinations without permission.

References (2)

Core 2
Core References
Third Party Advisory x_refsource_misc
http://shouji.360.cn/securityReportlist/CVE-2013-4764.html
Mailing List, Third Party Advisory x_refsource_misc
https://seclists.org/bugtraq/2013/Jul/107

Scores

CVSS v3 4.3
EPSS 0.0016
EPSS Percentile 36.5%
Attack Vector PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-276
Status published
Products (2)
samsung/galaxy_s3_firmware 1.0
samsung/galaxy_s4_firmware 1.4
Published Dec 27, 2019
Tracked Since Feb 18, 2026